HRE GROUP

Senior Cyber Advisor – InfoSec GRC

HRE GROUP

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

About the role

  • Serve as a GRC cybersecurity advisor supporting strategic projects at BRP Austria.
  • Ensure governance frameworks, security policies, and regulatory requirements are incorporated into projects.
  • Identify cyber risks, vulnerabilities, and threats, providing clear mitigation strategies.
  • Act as a security SME advising on ISO 27001, NIST, CIS and related frameworks.
  • Collaborate with Enterprise Architecture and Project Management on security solutions from design onwards.
  • Ensure security is integrated early in project lifecycles — security by design.
  • Engage stakeholders to promote security awareness and informed, risk-based decision making.

Requirements

  • Fluency in German and English.
  • Strong experience in InfoSec GRC / Cyber Advisory.
  • Experience with security governance, compliance, and cyber risk management.
  • Hands-on knowledge of ISO 27001, NIST, and CIS.
  • Strong analytical skills to assess risks in complex project environments.
  • Close experience working with enterprise architecture and project management.
  • Proactive, consultative, and solution-oriented mindset.
  • Knowledge of SAP is considered an asset.
  • Experience in industrial environments or large global enterprises.
  • Experience in international or multicultural projects.
Benefits
  • 100% remote 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
GRC cybersecuritycyber risk managementsecurity governanceISO 27001NISTCISanalytical skillssecurity policiesregulatory requirementssecurity by design
Soft Skills
proactive mindsetconsultative mindsetsolution-oriented mindsetstakeholder engagementsecurity awareness promotionrisk-based decision makingcollaborationcommunicationanalytical thinkingadaptability