Cyber Security Specialist - GRC
Munich
Lilium
Lilium is developing sustainable, high-speed air mobility through its electric vertical take-off and landing aircraft, vertiports and digital service.A career at Lilium is for those who want to do something extraordinary. We take pride in pushing the boundaries of engineering, technology and customer experience.
As part of a team, you will tackle challenges and deliver something that has never been done before. By joining Lilium you will have the opportunity to work with a world-class entrepreneurial team of more than 700 people who are as passionate about changing the world as you are.
You will always act with safety and integrity in mind and embody our core behaviors of efficient and positive collaboration, ownership of time, continuous improvements and, ultimately delivering results.
We thrive on diversity and creating an inclusive culture, with more than 50 nationalities currently working hard to bring our vision of a sustainable world to life.
Your role and your team:
You would be one of the early joiners in the growing Cyber Security function at Lilium. You will have the opportunity to shape overall Security Governance Risk and Compliance landscape for both IT and OT sides of our business.
You will be a part of the Cyber Security team and report directly to the Head of Cyber Security.
Your Day to Day:
- Develop and maintain a robust security risk and compliance framework and ensure proper alignment to relevant industry frameworks (e.g., SOX, ISO, NIST, etc.)
- Collaborate and adapt the process, risk, control framework, map organizational controls and establish the accountability and ownership for cyber security risk management and control activities
- Provide precise guidance and feedback on the implementation of technical architecture and engineering requirements
- In close collaboration with your colleagues within business you will help to work on action plans, non-conformities and provide management reporting’s
- Developing an overall Cyber Security Threat Landscape covering all aspects of our business
- Lead cross-functional risk management initiatives and projects that impact multiple risk disciplines and/or business units.
- Perform regular internal and reviews/audits against adopted standards and security policies
- Proactively run a comprehensive security awareness trainings and campaigns for our cyber security policies and practices
Your Profile:
- Ability to translate requirements into business language and priorities, and continuously work with them to develop business and security risk-appropriate control implementation solutions while balancing business priorities with compliance needs
- Ability to work efficiently and independently in a fast-paced, innovative environment
- Experience in conducting internal and external risk assessments
- Ability to work closely with auditors, regulators, and internal stakeholders and articulate technical concepts
- Experience working with security-related regulatory requirements, such as NIST, PCI, CSA, SOX and ISO 27001.
- Work experience in an international environment of atleast 5 years
- Strong communication and interpersonal skills
- Fluent English language skills (written and spoken) and German would be good to have
#LI-AC1
Life at Lilium:
You are joining us as we are building our global footprint. While the current COVID-19 restrictions mean that many of us are working remotely, we are still making the most out of this time. Meet fellow colleagues via our culture sessions and free weekly yoga classes, or improve your German or English with our free language courses.
Lilium is an equal opportunity employer and welcomes applications from all qualified individuals regardless of ethnicity, sex, disability, religion/belief, sexual orientation or age.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Compliance Governance ISO 27001 NIST Risk management
Perks/benefits: Team events Yoga
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs