New Challenge
fortable Job Advertisement: Risk & Compliance Manager (m/f/d)
Location: Berlin (with home office options)
Working Hours: Full-time
Start Date: Immediately or by arrangement
About Us
Q is a European defence-tech company pioneering the Internet of Defence with modular, scalable, and interoperable sensor and intelligence solutions. Our orchestration layer generates actionable situational awareness and enables the rapid, scalable, and wide-area integration of capabilities to respond to evolving threats – delivering immediate operational value for armed forces, security agencies, and actors in the critical-infrastructure domain.
Our products are designed to integrate seamlessly into existing defence infrastructures, offering fast data integration and data fusion capabilities to enable AI-enhanced analytics and situational awareness. It is built on a platform agnostic architecture, unlocking true interoperability. We are growing fast in a very dynamic environment and are looking for someone with exceptional hands-on mentality and execution power to help us grow further.
As Risk & Compliance Manager (m/f/d) you are directly reporting to the C-level and will be an essential part of our journey, with plenty of opportunities for your own personal and professional growth.
Your Responsibilities
* Own risk and compliance lifecycle for Project Q, supporting the implementation with external partners
* Identify, assess, and manage key risks across our business and its projects, including defining and tracking mitigation measures
* Ensure alignment with relevant regulatory, data, cybersecurity, and quality frameworks (e.g., BSI IT-Grundschutz, ISO 27001, ISO 9001, NIS2, CRA, GDPR)
* Translate regulatory and security requirements into practical and reasonable policies, processes, controls, and documentation
* Act as the interface between engineering, operations, leadership, and external partners on risk and compliance matters
* Support certifications, audits, and regulatory readiness across security and quality standards
* Help build and scale pragmatic GRC and ISMS structures as the organization and product mature
Your Profile
* Degree in Business Administration, Law, Information Systems, Cybersecurity, or a comparable field
* 5+ years of experience in cybersecurity, risk management, compliance, auditing, or related regulatory environments (defence / public sector in Germany is a plus)
* Strong understanding of governance, risk, and compliance structures and their application in complex projects
* Solid understanding of relevant frameworks such as BSI IT-Grundschutz, ISO 27001, ISO 9001, NIS2, CRA, or comparable standards – the more the better
* You always find a way: Structured, analytical thinker who can turn regulatory requirements into practical solutions
* High ownership and a hands-on approach – comfortable driving topics independently and getting things done
* Experience working with cross-functional teams and external partners in security-sensitive or regulated environments
* Exposure to adjacent regulatory domains such as data protection (e.g., GDPR), product security, or supply chain security is a plus
* Fluent in English; German (C1) is a strong advantage
If you do not feel comfortable taking responsibility for any of the following, then this role is probably not for you:
* Lead audits end to end, confidently answering auditor questions under pressure
* Draft, create security policies, custom security documents and answer security questionnaires, cross-map controls
* Get onboarded into a new regulation or infosec standards
We Offer
* The opportunity to help build a European tech company with a clear mission to empower our sovereign futures
* A high-impact role with real ownership in a fast-growing and dynamic environment
* Flat hierarchies, short decision paths, and close collaboration with experienced operators and engineers
* The chance to shape processes, structures, and capabilities as the company grows
* Opportunities for professional and personal development as part of a rapidly evolving organization
* Flexible working hours and remote work options
* Competitive compensation and additional benefits
Have we sparked your interest? Then we look forward to receiving your CV, including your earliest possible start date, at HR [at] project-q.ai .
About us
Q is a European defence-tech company pioneering the Internet of Defence with modular, scalable and interoperable sensor and intelligence solutions.