Airbus

Lead GRC Cyber Security Consultant

Airbus

full-time

Posted on:

Location Type: Hybrid

Location: MünchenGermany

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

Cyber Security

About the role

  • Lead large-scale information security risk assessments using qualitative and/or quantitative methods
  • Develop security strategies in collaboration with internal and external teams, subject-matter experts, and stakeholders
  • Define corrective actions for complex client engagements
  • Develop and implement organization-wide security policies and procedures; ensure they comply with cybersecurity regulations and industry best practices and promote awareness of those policies
  • Train employees on security best practices
  • Provide technical guidance and mentorship to Junior and Senior GRC Consultants and support their professional development
  • Plan and lead large consulting engagements in Governance & Compliance
  • Independently apply consulting methodologies and document and present findings to internal and external audiences
  • Design and deliver awareness programs and training for internal and external customers
  • Improve existing processes and tooling and engage technical experts to ensure successful delivery and consultant training
  • Provide regular advisory support to clients, identify opportunities for additional services (cross-/up-selling), and contribute to bid preparation for small- to medium-sized projects or provide significant support for large projects
  • Conduct internal audits to verify compliance and recommend improvements as necessary

Requirements

  • Role requires knowledge and skills typically obtained through a relevant degree (standard study period up to 4 years) in engineering, computer science, cybersecurity or related fields, or equivalent vocational training plus substantial subject-specific additional qualifications
  • Extensive knowledge and proven experience in the tasks listed above
  • Deep understanding of major security management frameworks (ISO 2700x, NIST CSF, OT Governance, ISO 31000, EBIOS-RM, BSI IT-Grundschutz)
  • Strong understanding of security technologies, controls, and industry best practices
  • Ability to develop and maintain security policies, procedures, and standards
  • Proven, extensive experience leading governance projects and security initiatives, with strong experience in ISMS implementation and defining security requirements at all levels
  • Broad knowledge of regulatory requirements across industries (BSI, Export Control, GDPR, NIS2, Defense, EASA regulations) and proven experience with GRC platforms and risk management tools
  • Exceptional ability to communicate complex security concepts to non-technical stakeholders; strong presentation and executive-level report writing skills; excellent negotiation, influencing, and stakeholder management abilities
  • Ability to advise clients on their objectives and build consensus among diverse stakeholders
  • Cultural sensitivity and experience working with international teams
  • German and English: business negotiation level required (spoken and written)
  • Willingness to travel for business domestically and internationally
  • Security clearance required for this role or must be obtainable from the responsible authorities
Benefits
  • Flexible remote working and flexible working hours
  • Competitive and attractive compensation including special payments
  • 30 days' annual leave and additional days off for special occasions
  • Intensive onboarding and expert support, including personalized onboarding with a dedicated mentor
  • Excellent training opportunities and strong development prospects
  • Attractive social benefits and offers, including employer-funded pension scheme, employee share options, discounted car leasing, bike leasing, preferential insurance conditions, and employee benefits with partner companies
  • On-site facilities (depending on location) such as canteen and cafeteria, fitness center, on-site childcare, company medical services and other health-related services

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
information security risk assessmentssecurity strategiessecurity policiessecurity best practicesconsulting methodologiesinternal auditsISMS implementationrisk management toolssecurity management frameworkssecurity technologies
Soft skills
technical guidancementorshipcommunicationpresentation skillsnegotiationinfluencingstakeholder managementcultural sensitivityconsensus buildingtraining
Certifications
security clearance