Information Security Consultant

Job not on LinkedIn

🕒 May 3

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

RST Beratung

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 1979

🤝 B2B

💸 Finance

🔒 Cybersecurity

B2B • Finance • Cybersecurity

RST Beratung is an owner-managed German advisory group headquartered in Essen that provides tax advisory, auditing, legal and corporate consulting services, together with information security and data-protection consulting. The firm employs over 100 people across several German offices and serves domestic and international clients, offering specialist services in healthcare, insolvency/sanierung, CSR and climate management, academy and interim management to business and public-sector clients.

📋 Description

• Advising on the establishment and improvement of ISMS and BCMS across various industries and company sizes. • Advising on the integration and implementation of regulatory requirements such as the BSI Act, the KRITIS umbrella law, DORA (Digital Operational Resilience Act), and other standards. • Planning and conducting risk assessments and risk treatment with the aim of ensuring effective controllability (KPIs, roadmaps, prioritization). • Developing concepts and governance/rulebooks for clients in regulated sectors (KRITIS, NIS-2, KRITIS umbrella law). • Performing internal audits and preparing and supporting our clients for certification to ISO 27001 and/or TISAX. • Preparing and executing emergency/incident exercises. • Participating in internal projects, structuring our collective knowledge across the firm, and further developing our consulting approach.

🎯 Requirements

• At least 3 years of practical experience in a management consultancy advising on information and IT security topics. • University degree or equivalent experience in one or more of our core areas, e.g., IT security, (business) informatics/computer science, business administration, or security management. • Required knowledge of standards and methods: ISO 27001, ISO 22301, TISAX. • Optional: ISO 27031, DORA, BSI IT-Grundschutz, etc. • Nice-to-have (not mandatory): CISM/CISA, ISO 27001 Auditor, experience as an external CISO/ISB, IT-Grundschutz practitioner/consultant, Certified ITSC-Manager, etc. • Very good German language skills and good English skills.

🏖️ Benefits

• Corporate fitness program • Team events: Because “we” is more than just a word.