Senior IT Security Governance Specialist - Consulting & Assessment (m/f/d)
At CARIAD, we're bundling and further expanding the Volkswagen Group's software expertise. We’re uniting over 6,500 global experts to build a scalable technology stack, including a software platform, unified electronic architecture and reliable connection to the automotive cloud.
Our CARIDIANS are developing vehicle functions such as driver assistance systems, a next-generation infotainment platform, power electronics and charging technology, and digital services in and around the vehicle.
Our software can already be found in Volkswagen ID. models and will soon power Audi and Porsche vehicles with the E3 1.2 platform in 2024.
It's no easy task, but with experts like you, we can shape the future of mobility. Join us at CARIAD and be part of this exciting journey!
YOUR TEAM
The Security Governance, Risk & Compliance team is on a mission to build a zero trust security architecture for CARIAD as a company and its products.
Our goal is to secure our customers worldwide from the increasing cyber security attack surface. The main responsibility of the team is to build, maintain and operate the information security management system (ISMS) and cyber security management system (CSMS) for CARIAD compliant to the current standards and regulations.
We operate for the entire CARIAD group worldwide. Be part of the team!
WHAT YOU WILL DO
- Drive standardization and implement best-practices within the domain of operational IT-Security, across multiple-domains
- Guide IT teams through security processes and support with the current security standards and own best practices
- Regular analysis of current IT threat situations and optimizing existing security solutions to identify known and new attack patterns
- Do technical analysis on possible security issues and incidents and create respective action plans together with the IT team to correct the referred inconsistencies
- Evaluate and suggest future security tools and create the referred process, procedure and documentation, in constant coordination with the Security Governance Team
WHO YOU ARE
- Completed studies in computer science or similar with at least 4-6 years of professional experience in IT Security, Cloud Security or hybrid Infrastructures
- Knowledge of applicable regulations, norms and standards (e.g. ISO 27001, ISO 27005, NIST Cyber Security Framework)
- Experience in technical guidance of teams or in technical consulting for implementing best practices
- Strong communication and presentation skills in English and German
- Nice to have is know-how on securing cloud infrastructure & AI / ML, e.g. virtual testing with AI and technical certification (e.
g. CISSP, CRISC, CISM, CISA, OSCP, OSCE or OSWE, SANS etc.)
NICE TO KNOW
- Remote work options
- Temporary work from abroad in selected countries
- Flextime / optional working hours
- Company pension plan
- Annual professional development
- Sabbatical option up to 6 months
- 30 days paid + 10 days unpaid leave
- Possibility for VW Group car leasing
Share this job offer