Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
CBTW

Governance, Risk & Compliance Expert

CBTW

Governance, Risk & Compliance Expert for cybersecurity service line protecting organizations from evolving cyber threats. Supporting clients with security strategies and enhancing digital asset security.

Posted 5/30/2026full-timeBerlin • 🇩🇪 GermanyMid-LevelSenior💰 €65,000 - €75,000 per yearWebsite

Tech Stack

Tools & technologies
Cyber Security

About the role

Key responsibilities & impact
  • Support clients in defining and implementing their information security strategy
  • Organize, structure, and manage security projects
  • Implement and further develop Information Security Management Systems (ISMS)
  • Develop and maintain security policies and processes (e.g., incident response, security policies)
  • Analyze and assess security risks using established frameworks (e.g., ISO 27005, EBIOS RM)
  • Identify and monitor operational, compliance, and security risks
  • Define and implement security KPIs to measure security performance
  • Support compliance with relevant cybersecurity and data protection regulations (e.g., NIS2, DORA, GDPR, NIST)
  • Assess organizations' security posture and identify improvement measures
  • Conduct internal audits and support compliance processes
  • Coordinate incident response and assist with incident analysis
  • Monitor remediation/action plans following incidents or audits and ensure their implementation
  • Deliver training and awareness programs on information security and GRC policies
  • Promote the adoption of security standards and best practices across organizations
  • Contribute to our internal security community at CBTW and share knowledge and best practices with colleagues

Requirements

What you’ll need
  • Bachelor’s or Master’s degree in Cybersecurity, Information Security, or a comparable qualification
  • At least 5 years of experience in a comparable role in Governance, Risk & Compliance or information security
  • Solid knowledge of the ISO 2700x standards (ISO 27001, ISO 27002, ISO 27005)
  • Experience with risk management methods such as EBIOS RM
  • Knowledge of relevant regulatory requirements such as NIS2, DORA, or GDPR
  • Experience implementing or improving an ISMS
  • Strong analytical skills and a structured approach to work
  • Fluent German and English
  • Certifications such as ISO 27001 Lead Implementer / Lead Auditor or ISO 27005 Risk Manager are advantageous
  • Additional certifications such as CISM, CISSP, CRISC, or CISA are a plus
  • Willingness to travel within the DACH region

Benefits

Comp & perks
  • Onboarding & team spirit: welcome day, ‘Hello’ drink & new joiner lunch
  • Mentoring program for your ideal onboarding
  • After-work events, summer tech event & festive Christmas party
  • Joint social engagement through donation campaigns
  • Individual career paths & regular feedback discussions
  • Diverse in-house trainings, online courses & external professional development
  • Remote work & workation – within the EU and beyond
  • Sabbatical options & flexible working time models
  • Holiday calendar for Baden-Württemberg plus the public holidays of your federal state – double benefit
  • 30 days of vacation per year
  • Allowance to equip your mobile workspace
  • Deutschlandticket or bike leasing – you choose
  • Optional: BahnCard for even more travel flexibility
  • Support with retirement provision & wealth building
  • Various options for financial protection
  • Access to the Employee Assistance Program (EAP) – also for family members
  • Bonuses for exceptional commitment
  • Exclusive perks through our corporate benefits platform
  • CBTW Spotify playlist for a musical impression of the team

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Information Security Management Systems (ISMS)risk managementincident responsesecurity policiessecurity KPIsISO 27001ISO 27002ISO 27005EBIOS RMcybersecurity compliance
Soft Skills
analytical skillsstructured approachcommunicationtraining and awarenessproject managementcollaborationknowledge sharingproblem-solvingorganizational skillsleadership
Certifications
ISO 27001 Lead ImplementerISO 27001 Lead AuditorISO 27005 Risk ManagerCISMCISSPCRISCCISA