About the Role:
We are looking for a Cybersecurity Program Manager fluent in German and English to join our growing management and IT consulting team.
In this role, youll be responsible for end to end delivery of cybersecurity initiativesensuring alignment with compliance frameworks, technical architecture, and business risk priorities. You will work closely with clients, internal teams, and external stakeholders to strengthen security posture and support digital transformation through robust security program management.
Key Responsibilities:
* Architect, drive, and oversee enterprise wide cybersecurity programs, ensuring alignment with organizational risk appetite, security governance models, and compliance mandates.
* Facilitate cross functional stakeholder engagement across IT infrastructure, InfoSec, compliance, and business leadership to ensure seamless program execution and operational buy in.
* Lead program governance and execution frameworks, including risk assessment, remediation planning, KPI/OKR reporting, and change control processes.
* Ensure cybersecurity controls and program components align with leading industry frameworks (e.g., ISO/IEC 27001, NIST CSF, CIS Controls) and comply with regional regulatory obligations (e.g., GDPR, NIS2 Directive, BSI IT Grundschutz).
* Act as a primary liaison for internal audit, external regulators, and client facing security assurance, communicating program posture and remediation progress in both German and English.
* Collaborate with security architects and engineering teams to ensure program alignment with cloud security strategies, identity and access management (IAM), and zero trust architecture principles.
* Monitor the evolving threat landscape, regulatory changes, and vulnerability intelligence feeds to adapt program roadmaps and risk mitigation strategies accordingly.
* Contribute to cybersecurity consulting engagements, including RFP responses, solution design, and delivery planning, particularly in program oversight and GRC (Governance, Risk & Compliance) domains.
Skills & Qualifications:
1. 5+ years of experience in cybersecurity program or project management, ideally in consulting or enterprise environments
2. Strong technical understanding of cybersecurity architecture, governance, and regulatory compliance
3. Fluency in German and English (written and spoken) is required
4. Deep knowledge of security frameworks and methodologies (e.g., NIST, ISO/IEC 27001, CIS Controls, BSI, MITRE ATT&CK)
5. Demonstrated ability to lead cross functional teams and manage large scale cybersecurity initiatives
6. Relevant certifications such as PMP, CISM, CISSP, ISO 27001 Lead Implementer/Auditor are highly desirable
7. Bachelor''s or Masters degree in Cybersecurity, Information Systems, Engineering, or relate