Security Risk and Compliance Specialist

This is a fully remote position, open to applicants in Germany.

📋 Description

• Extract specific technical controls from overarching control objectives and frameworks such as NIS2 and ISO 27001.

• Convert compliance and risk obligations into distinct non-functional requirements (NFRs) for product lines and platform architecture.

• Oversee the NFR category "Security" and offer guidance on the criteria for completion regarding the implementation and testing of controls.

• Assist in the product specification (PRS) processes by verifying security-related inputs.

• Facilitate the adoption of requirements in accordance with ISRC governance frameworks.

⛳️ Requirements

• Over 3 years of experience in security architecture, security engineering, cloud security, or a similar domain.

• In-depth understanding of security architecture principles, secure design patterns, and DevSecOps methodologies.

• Proficiency in at least one of the following fields: security architecture and design, cloud security, identity and access management, application security, DevSecOps and automation, incident response and resilience, or cryptography and privacy/data protection.

• Experience in converting technical security requirements into implementable designs and documentation.

• Fluent in English, both spoken and written (minimum C1 level).

🏝️ Benefits

• Flexible working hours.

• Freedom to select your own projects.

• Access to exciting projects across diverse industries.

• Support for your professional growth.

• Competitive salary.

• A dedicated team available to assist you with any inquiries.