Consultant, Information Security

Job not on LinkedIn

🕒 April 3

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

RST Beratung

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 1979

🤝 B2B

💸 Finance

🔒 Cybersecurity

B2B • Finance • Cybersecurity

RST Beratung is an owner-managed German advisory group headquartered in Essen that provides tax advisory, auditing, legal and corporate consulting services, together with information security and data-protection consulting. The firm employs over 100 people across several German offices and serves domestic and international clients, offering specialist services in healthcare, insolvency/sanierung, CSR and climate management, academy and interim management to business and public-sector clients.

📋 Description

• Advising on the setup and improvement of ISMS and BCMS across various industries and company sizes. • Advising on the integration and implementation of regulatory requirements from the BSI Act, the KRITIS umbrella law, DORA and other standards. • Planning and establishing risk analyses and risk treatment with the aim of effective controllability (KPIs, roadmaps, prioritization). • Developing concepts and policies for clients in regulated sectors (KRITIS, NIS-2, KRITIS umbrella law). • Conducting internal audits and preparing and supporting our clients during certification processes for ISO 27001 and/or TISAX. • Preparing and conducting emergency/exercise drills. • Participating in internal projects, organizing and structuring our collective knowledge, and further developing our consulting approach.

🎯 Requirements

• At least 3 years of practical experience in a management consultancy advising on information and IT security. • University degree or comparable experience in one or more of our core topics, e.g. IT security, (business) computer science, business administration, security management. • Knowledge of standards and methods: Required: ISO 27001, ISO 22301, TISAX • Optional: ISO 27031, DORA, BSI IT-Grundschutz, etc. • Nice-to-have (not mandatory): CISM/CISA, ISO 27001 Auditor, external CISO/Information Security Officer, IT-Grundschutz practitioner/consultant, Certified ITSC-Manager, etc. • Ability to build and sustain long-term client relationships on an equal footing. • Willingness to independently take on project and client responsibility. • A pragmatic approach and the ability to translate information security requirements into understandable, prioritized measures. • Very good self-organization and a structured, analytical approach to topics. • A team player mindset. • Very good German language skills; good English language skills.

🏖️ Benefits

• Corporate fitness program • Team events: because “we” is more than just a word.