Cyber Risk Manager - Remote

Overview

The Cyber Risk Manager is responsible for identifying, assessing, and mitigating cyber risks within the organization, ensuring compliance with regulatory requirements, and supporting business continuity and resilience.

In Short

• Lead cyber risk assessments across systems, vendors, and business units.
• Develop and maintain the organization’s cyber risk register and heat maps.
• Collaborate with IT, compliance, legal, and business teams to prioritize and remediate risks.
• Support the creation and implementation of risk policies and internal controls.
• Continuously monitor and report cybersecurity threats and incidents.
• Ensure compliance with regulations such as GDPR, HIPAA, SOX, NIST, and ISO 27001.
• Facilitate internal and external audits related to cyber risk.
• Conduct third-party risk assessments and promote awareness through training.

Requirements

• Degree in Cybersecurity, Information Technology, Risk Management, or related field.
• At least five years of experience in cybersecurity or risk management.
• Familiarity with frameworks like NIST CSF, ISO 27001, COBIT, and FAIR.
• Certifications such as CISSP, CRISC, CISM, or CISA are advantageous.
• Strong analytical thinking and clear communication skills.
• Experience with GRC tools, cloud security, or incident response is a plus.
• Fluency in English (C1); German skills are beneficial.

Benefits

• Immediate start or by mutual agreement.
• 100% workload.
• Permanent position.
• Diversity and inclusion in the workplace.