Group Information Security Manager

OT Penetration Tester  Location: Nordrhein-Westfalen (NRW)  Our client is seeking an OT Penetration Tester to support the security of operational technology and industrial control system environments. This role offers hands-on exposure to OT security testing, industrial networks and cyber resilience initiatives within critical operational environments. Key Responsibilities: Conduct penetration testing and security assessments across OT, ICS and SCADA environments. Assess industrial networks, segmentation controls and OT/IT convergence zones. Identify vulnerabilities and deliver risk-focused security reporting. Support remediation planning with engineering and operational stakeholders. Contribute to threat modelling, red team exercises and security simulations. Advise on OT security and compliance frameworks including IEC 62443, NIS2 and KRITIS requirements. Support the development of internal methodologies, tooling and testing processes. Your Profile: Experience within OT/ICS penetration testing or industrial cyber security environments. Strong understanding of industrial protocols and OT network architectures. Familiarity with OT security tools and vulnerability assessment methodologies. Knowledge of OT-related compliance and regulatory frameworks. Strong analytical and communication skills. Ability to work independently within complex operational environments. Strong German and English language skills. What’s on Offer? Flexible hybrid working environment. Access to advanced OT and security testing environments. Training and certification support. Opportunity to work on critical infrastructure and industrial security projects. Collaborative and security-focused company culture.

Group Information Security Manager  Location: Munich A leading financial services organisation is seeking a Group Information Security Manager to support and further develop its enterprise-wide information security programme. This role offers broad responsibility across information security governance, risk management and regulatory compliance within a complex international environment. Key Responsibilities: Support and further develop the group-wide Information Security Management System (ISMS). Define and maintain information security policies, standards and governance frameworks. Lead information security risk and compliance activities across the organisation. Support compliance with regulatory frameworks including DORA, BAIT, MaRisk, NIS2 and GDPR. Collaborate with Risk, Compliance, Legal and IT teams on security-related initiatives. Oversee operational security topics including incident response, vulnerability management and third-party risk. Support audits, regulatory reviews and reporting activities. Lead security awareness and training initiatives across the organisation. Your Profile: Significant experience within information security, cyber risk or security governance functions. Strong understanding of ISMS frameworks and enterprise security governance. Knowledge of financial services regulations and security frameworks including ISO 27001 and NIST. Experience working within regulated and complex organisational environments. Strong analytical, communication and stakeholder management skills. Strategic and solution-oriented mindset. Fluent German and strong English language skills. What’s on Offer? Senior role with broad organisational exposure. International and collaborative working environment. Opportunity to shape and enhance enterprise security initiatives. Flexible hybrid working model. Competitive compensation and long-term career development opportunities.

Senior Consultant GRC / ServiceNow Location: Germany / Remote A leading consultancy is seeking a Senior Consultant GRC / ServiceNow to support the delivery of governance, risk and compliance solutions for enterprise clients across the DACH region. This role combines GRC advisory work with hands-on ServiceNow implementation expertise within a dynamic and client-focused environment. Key Responsibilities: Support and lead ServiceNow GRC / IRM implementation projects across enterprise environments. Translate regulatory and compliance requirements into scalable platform solutions. Configure and customise ServiceNow workflows, controls and reporting processes. Advise clients on GRC frameworks, risk management and compliance topics. Conduct workshops and collaborate with stakeholders across risk, audit, compliance and IT functions. Support pre-sales activities, proposals and practice development initiatives. Mentor junior consultants and contribute to internal knowledge sharing. Your Profile: Strong experience with ServiceNow GRC / IRM implementations. Understanding of governance, risk and compliance frameworks and methodologies. Knowledge of regulatory frameworks including DORA, NIS2, GDPR and ISO 27001. Experience working within consulting or client-facing environments. Strong analytical, communication and stakeholder management skills. Structured and solution-oriented working style. Fluent German and strong English language skills. What’s on Offer? Opportunity to work on complex enterprise GRC transformation projects. Flexible and remote-first working environment. Access to training and certification opportunities within the ServiceNow ecosystem. Collaborative and growth-oriented consulting culture. Competitive compensation and long-term career development opportunities.

AI Security Consultant  Location: Germany / Remote A growing cybersecurity consultancy is seeking an AI Security Consultant to support clients on emerging AI and cybersecurity challenges. This role offers exposure to AI security, governance and regulatory topics within a fast-evolving and highly innovative environment. Key Responsibilities: Conduct security assessments of AI, machine learning and LLM-based systems. Advise clients on AI-related cyber risks, governance and security controls. Support secure AI development and threat modelling initiatives. Assess AI deployments against regulatory and compliance requirements, including the EU AI Act. Contribute to AI security testing, red teaming and risk assessment activities. Develop client workshops, training sessions and awareness initiatives. Support thought leadership, methodologies and practice development within AI security. Your Profile: Experience within cybersecurity, AI security or technology consulting environments. Strong understanding of AI, machine learning and LLM technologies. Knowledge of AI security risks, adversarial testing and secure development practices. Familiarity with frameworks and regulations including the EU AI Act, ISO 27001, DORA and NIS2. Strong analytical, communication and stakeholder management skills. Client-focused and solution-oriented mindset. Fluent German and strong English language skills. What’s on Offer? Opportunity to work within a rapidly growing area of cybersecurity. Flexible and remote-first working environment. Exposure to innovative AI and security projects across multiple industries. Collaborative and knowledge-driven company culture. Competitive compensation and long-term development opportunities.