Job Title: Cybersecurity Compliance Specialist
Job Description
At our organization, we foster individual development and entrepreneurial needs by embracing a hybrid work model with flexible working hours – both on-site and remotely. Please read the job requirements carefully.
We are seeking an experienced Cybersecurity Compliance Specialist to design and manage our global product cybersecurity audit framework, including methodologies, templates, reporting structures, and audit cycles. The ideal candidate will have expertise in developing and implementing comprehensive cybersecurity programs that align with industry standards and regulations.
* Design and develop a robust cybersecurity audit framework to ensure compliance with relevant regulations and industry standards.
* Plan, coordinate, and lead audits across all divisions and sites worldwide.
* Conduct high-priority and complex audits, especially for critical or high-risk products.
* Lead and guide other auditors across the organization; define audit scopes, review findings, and ensure consistency in execution.
* Ensure alignment of audit activities with relevant standards and regulations (e.g., secure development processes, threat/risk analyses, software update mechanisms, vulnerability and incident handling, and SBOM/HBOM practices).
* Interface with product teams, engineering, compliance, and management to communicate audit outcomes and drive remediation and improvement.
* Report audit results to executive stakeholders and ensure transparency on cybersecurity maturity across the product landscape.
* Monitor and interpret emerging cybersecurity regulations and translate them into audit criteria and updates to the framework.
* Build internal competence by training and mentoring new auditors and supporting divisions in audit readiness.
Required Skills and Qualifications
The successful candidate will have:
* 7+ years of experience in product cybersecurity or secure product development, with at least 3 years in a lead auditor or audit framework development role.
* In-depth knowledge of cybersecurity standards (IEC 62443, ISO 27001, etc.).
* Proven ability to lead audit programs at group or enterprise level.
* Auditor certifications (e.g., ISO 27001 Lead Auditor, TISAX, IEC 62443, etc.).
* Fluent in English (spoken and written); German is a plus.
Benefits
As an internationally successful family business, we offer:
* Attractive remuneration and social benefits.
* Flexible and hybrid working.
* Company pension scheme.
* Individual development and training opportunities.
* Employee benefits & discounts.
* Bicycle leasing through salary conversion.