As a Cybersecurity Compliance Consultant, you will focus on ensuring product cybersecurity compliance with regulations such as the Cyber Resilience Act (CRA), the Radio Equipment Directive (RED), and other relevant product cybersecurity requirements. You will collaborate with cross-functional teams to develop, implement, and maintain robust compliance programs that address a wide range of product cybersecurity challenges. Your role is critical in helping our clients navigate a complex regulatory environment—protecting their reputation, safeguarding end users, and minimizing risk.
About ONEKEY
ONEKEY is a leading European specialist in Product Cybersecurity & Compliance Management and is part of PwC Germany’s investment portfolio. We combine an automated Product Cybersecurity & Compliance Platform (PCCP) with expert consulting services, delivering comprehensive solutions to global clients across Asia, Europe, and the Americas.
As we continue to grow, we are looking for a Cybersecurity Compliance Consultant to join our expert team.
We are looking for you if you are
* Cybersecurity Compliance Expert: You understand regulations like CRA and RED, staying ahead of emerging cybersecurity and privacy mandates.
* Regulatory Navigator: You interpret compliance requirements and develop clear, actionable strategies that integrate seamlessly into product development.
* Strategic Consultant & Project Leader: You guide clients through compliance challenges, manage audits and risk assessments, and drive continuous improvement.
* Educator & Collaborator: You work across teams to provide expert compliance insights and equip stakeholders with the knowledge to stay ahead of regulations.
What we offer
* Full-time position with flexible working hours and hybrid/remote work options
* Work with a world-class cybersecurity expert team across Belgium, Germany, and Hungary
* Be part of Europe’s leading product cybersecurity and compliance team
* Start-up atmosphere with streamlined processes and no micromanagement
* Flat hierarchy with a transparent and open-minded culture
* Highly competitive salary with state-of-the-art equipment
* Opportunity to meet your colleagues in person in Belgium, Germany, or Hungary
* Modern workplace tools like Slack and cloud-based solutions
Responsibilities
Regulatory Monitoring & Interpretation
* Stay current on emerging regulations and standards, including CRA, RED, and other relevant cybersecurity and privacy mandates.
* Interpret compliance requirements and translate them into actionable guidelines for product teams and clients.
Compliance Program Development
* Design and implement compliance strategies that integrate seamlessly into product design, development, and maintenance.
* Provide clear documentation, guidelines, and best practices to ensure ongoing adherence to relevant standards.
Project Management
* Lead and coordinate compliance-related initiatives across internal stakeholders (e.g., legal, product, engineering) and with external partners.
* Set clear milestones and timelines, ensuring projects are delivered on time and within scope.
Audits & Assessments
* Conduct regular audits, risk assessments, and gap analyses to identify compliance vulnerabilities.
* Develop and track remediation plans, ensuring continuous improvement of security and compliance postures.
Cross-Functional Collaboration
* Work closely with cybersecurity consultants, legal experts, and client-facing teams to provide a holistic compliance perspective.
* Offer support and expertise to clients during product certification or audit processes.
Education & Training
* Educate internal teams and external clients on best practices, emerging threats, and potential impacts of regulatory changes.
* Develop training materials and conduct workshops, ensuring stakeholders are equipped to meet compliance obligations.
Qualifications
Education & Background:
* Bachelor’s or Master’s degree in Law, Computer Science, Information Security, Engineering, or a related field.
Regulatory & Standards Knowledge:
* Familiarity with CRA, RED, and other cybersecurity regulations (e.g., EN 303 645, ISO/IEC 27001, IEC 62443, NIS2).
* Understanding of broader compliance frameworks in cybersecurity or data protection is a plus.
Professional Experience:
* 2+ years of experience in cybersecurity and/or compliance roles, preferably within regulated industries.
* Demonstrated success in leading or supporting complex compliance projects.
Analytical & Detail-Oriented:
* Strong ability to interpret regulatory documents, identify risks, and propose data-driven remediation strategies.
Communication & Interpersonal Skills:
* Excellent written and verbal communication skills in English & German.
* Ability to present complex information clearly to diverse audiences and influence stakeholders at various levels.
Team Player & Self-Starter:
* Proactive, solution-oriented mindset with the ability to work effectively both independently and in cross-functional teams.