75% Remote: SME (f/m/d) for Governance & Risk
Firmenname für PREMIUM-Mitglieder sichtbar
- November 2024
- März 2025
- D-Großraum Berlin
- auf Anfrage
- Remote
- 02.10.2024
Projekt Insights
Projektbeschreibung
For our client we are looking for a SME (f/m/d) for Governance & Risk.
Frame data:
Start: November 2024
Duration: 31.03.25 ++ (long term)
Capacity: 100% if possible
Location: Berlin / Remote (1 week Berlin / 3 weeks remote in rotation), up to 50% onsite in peak times
Role:
The Platform as a platform (or portfolio of products) consists of currently seven product lines. Each product line is responsible for a subset of products (or sub-portfolio of products) - e.g. all infrastructure products, all data
products, etc. Each product line therefore includes (among other roles) also a product management, which is defining & specifying the products in the product line, and an architecture team, which is arhcitecting & designing the product architecture of all product within the product line.
Compliance & Security is currently implicitley included in Product Management & Product Architecture for each Product Line as well as for the
Platform overall.
In order to explicitely define & specify Compliance & Security as well as Risk with each Product as well as to define & establish all necessary processes & governance for compliance, security & risk, the program will start a project (for an initial analysis & introduction phase), which will be transitioned into the line organisation on program and on product line level.
As the Governance & Risk SME you will be responsible for:
- Analysis of program structure and security context of the company
- Lead workshops and discussions with stakeholders and domain experts
- Align with technical and Compliance stakeholders on potential implications for security processes
- Design security process requirements and the concept for the security & compliance support function
Skills (must-have):
- At least 2 years of working experience in the domain of information or cyber security
- Strong background in governance, risk and compliance
- Working expertise in KRITIS-relevant context
- Strong understanding of information security frameworks, ISMS and security processes in general
- Solid understanding of cloud-native paradigms, technologies and processes
- Certificates such as CISA, CISSP, CISM are a strong plus
- Fluent English communication skills in speech and writing (minimum C1 level).
Skills (should-have):
- Fluent German in speech and writing (at least B2)
Frame data:
Start: November 2024
Duration: 31.03.25 ++ (long term)
Capacity: 100% if possible
Location: Berlin / Remote (1 week Berlin / 3 weeks remote in rotation), up to 50% onsite in peak times
Role:
The Platform as a platform (or portfolio of products) consists of currently seven product lines. Each product line is responsible for a subset of products (or sub-portfolio of products) - e.g. all infrastructure products, all data
products, etc. Each product line therefore includes (among other roles) also a product management, which is defining & specifying the products in the product line, and an architecture team, which is arhcitecting & designing the product architecture of all product within the product line.
Compliance & Security is currently implicitley included in Product Management & Product Architecture for each Product Line as well as for the
Platform overall.
In order to explicitely define & specify Compliance & Security as well as Risk with each Product as well as to define & establish all necessary processes & governance for compliance, security & risk, the program will start a project (for an initial analysis & introduction phase), which will be transitioned into the line organisation on program and on product line level.
As the Governance & Risk SME you will be responsible for:
- Analysis of program structure and security context of the company
- Lead workshops and discussions with stakeholders and domain experts
- Align with technical and Compliance stakeholders on potential implications for security processes
- Design security process requirements and the concept for the security & compliance support function
Skills (must-have):
- At least 2 years of working experience in the domain of information or cyber security
- Strong background in governance, risk and compliance
- Working expertise in KRITIS-relevant context
- Strong understanding of information security frameworks, ISMS and security processes in general
- Solid understanding of cloud-native paradigms, technologies and processes
- Certificates such as CISA, CISSP, CISM are a strong plus
- Fluent English communication skills in speech and writing (minimum C1 level).
Skills (should-have):
- Fluent German in speech and writing (at least B2)
Kontaktdaten
Als registriertes Mitglied von freelance.de können Sie sich direkt auf dieses Projekt bewerben.
Kostenlos registrierenKategorien und Skills
IT, Entwicklung:
Management, Unternehmen, Strategie:
Sie suchen Freelancer?
Schreiben Sie Ihr Projekt aus und erhalten Sie noch heute passende Angebote.
Jetzt Projekt erstellen