Job Description
Embark on a transformative journey as a Senior Compliance Auditor where you will play a pivotal role in the planning and execution of IT audit management. As a key member of our global IT team, you will actively shape the work environment by implementing robust compliance strategies and ensuring seamless operations.
The ideal candidate will possess a strong analytical mindset, excellent communication skills, and the ability to thrive in a fast-paced environment. If you are passionate about delivering exceptional results, fostering collaboration, and driving growth, this opportunity is tailor-made for you.
* Key Responsibilities:
* Plan audits by analyzing Information Security Standards, such as ISO 27001:2022, and define audit scopes within your area of expertise.
* Create and maintain structured audit catalogues tailored to the identified scope.
* Draft audit plans for your assigned audit areas.
* Perform audits in line with the approved audit plan, covering both internal processes and assets as well as audits of external service providers.
* Assess a broad range of audit topics, including IT systems, infrastructure and processes, information security management processes, and on-premise or virtual audits of physical security.
* Document findings clearly and thoroughly to enable process and asset owners to identify and develop mitigation measures and implementation plans.
* Contribute to the risk register through the clear classification and documentation of audit findings and collaborate with IT compliance and risk stakeholders.
* Report audit results to the CTO.
* Be involved in certification audits.
* Support client assessments by providing information or take part in client meetings.
Required Skills and Qualifications
* Essential Qualifications:
* A university degree or formal education in informatics, business informatics, IT security, or a similar field.
* Training or self-development into an Auditor or Senior Auditor for information security or IT/cybersecurity.
* At least 4–5 years of experience in similar audit roles within international organizations.
* Hands-on experience with auditing of either ISO 2700x standards, BSI Grundschutz, SOC 2 Type II, or similar standards covering information security and information security management.
* Certifications concerning information security auditing are a plus.
* Experience in audit planning, including scope definition, method selection, guidance of the auditees through the audit process, and realistic estimation of time and efforts.
* Familiarity with risk management terminology and methodologies.
* Strong analytical thinking, self-motivation, and a structured, results-oriented approach to work.
* Very good communication skills and fluency in both German and English (minimum B1 level).
* Adherence to the highest ethical standards in auditing, ensuring objectivity, confidentiality, and independence at every stage of the process.
Benefits
* Advance your career with exciting professional opportunities in a thriving company.
* Voice your unique ideas in a corporate culture defined by entrepreneurial spirit, openness, and integrity.
* Feel at home working with helpful, enthusiastic colleagues who have great team spirit.
* Broaden your perspective with extensive training curriculum and learning programs.
* Speak your mind in holistic feedback and development processes.
* Enjoy benefits like hybrid working, daycare allowance, corporate discounts, and wellbeing support.
* Unwind in break areas where you can help yourself to healthy snacks and beverages provided.
* See another side of your coworkers at frequent employee events and highly anticipated World Meeting and Holiday Party.