Cyber Security Specialist - GRC
Munich
Lilium
Lilium is developing sustainable, high-speed air mobility through its electric vertical take-off and landing aircraft, vertiports and digital service.A career at Lilium is for those who want to do something extraordinary. We take pride in pushing the boundaries of engineering, technology and customer experience.
As part of a team, you will tackle challenges and deliver something that has never been done before. By joining Lilium you will have the opportunity to work with a world-class entrepreneurial team of more than 950 people who are as passionate about changing the world as you are.
You will always act with safety and integrity in mind and embody our core behaviors of efficient and positive collaboration, ownership of time, continuous improvements and, ultimately delivering results.
We thrive on diversity and creating an inclusive culture, with more than 50 nationalities currently working hard to bring our vision of a sustainable world to life.
Your role and your team:
You would be one of the early joiners in the growing Cyber Security function at Lilium. You will have the opportunity to shape overall Security Governance Risk and Compliance landscape for both IT and OT sides of our business.
You will be a part of the Cyber Security team and report directly to the Head of Cyber Security. This role requires onsite presence for a minimum of 2-3 days a week, depending on the need.
Your Day to Day Tasks:
- Develop and maintain a robust security risk and compliance framework and ensure proper alignment to relevant industry frameworks (e.g., SOX, ISO, NIST, etc.).
- Collaborate and adapt the process, risk, control framework, map organizational controls and establish the accountability and ownership for cyber security risk management and control activities.
- Provide precise guidance and feedback on the implementation of technical architecture and engineering requirements.
- In close collaboration with your colleagues within business you will help to work on action plans, non-conformities and provide management reporting’s.
- Developing an overall Cyber Security Threat Landscape covering all aspects of our business.
- Lead cross-functional risk management initiatives and projects that impact multiple risk disciplines and/or business units.
- Perform regular internal and reviews/audits against adopted standards and security policies.
- Proactively run a comprehensive security awareness trainings and campaigns for our cyber security policies and practices.
Your Profile:
- Ability to translate requirements into business language and priorities, and continuously work with them to develop business and security risk-appropriate control implementation solutions while balancing business priorities with compliance needs.
- Ability to work efficiently and independently in a fast-paced, innovative environment.
- Experience in conducting internal and external risk assessments.
- Ability to work closely with auditors, regulators, and internal stakeholders and articulate technical concepts.
- Experience working with security-related regulatory requirements, such as NIST, PCI, CSA, SOX and ISO 27001.
- Work experience in an international environment of atleast 5 years.
- Strong communication and interpersonal skills.
- Fluent English language skills (written and spoken) and German would be good to have.
#LI-RK1
Want to know more? Then view our 'Why join Lilium' page!
Life at Lilium:
The wellbeing of our employees is a high priority. In our HQ we have many initiatives such as free healthy food and drinks, free in-house gym and health days. In remote offices we offer online opportunities to stay connected and develop yourself as well including our culture club, learning terminal, Employee Assistance Program and many more.
Lilium is an equal opportunity employer and welcomes applications from all qualified individuals regardless of ethnicity, sex, disability, religion/belief, sexual orientation or age.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Compliance Governance ISO 27001 NIST Risk assessment Risk management SOX
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open SQL-related jobs
- Open PowerShell-related jobs