logo

View all jobs

Cyber Risk & Compliance Manager - January 2026

remote, remote
For one of our customers in the telco industry, we are looking for a freelance Cyber Risk & Compliance Manager

Background:
 
  • The client has an increasingly complex and dynamic environment when it comes to cybersecurity and targeted threats. For this reason, the client conducts different types of security audits and assessments (e.g. control assessments, vulnerability scans, pentests, etc.).
  • In the event that deviations from security requirements or critical vulnerabilities that cannot be solved immediately are identified in the audits or assessments, for example, the corresponding findings are reported as risk candidates.

Tasks:
  • Risk Analysis: Identification of a wide range of cyber risks arising from changes in the digital landscape and the increasing capabilities of attackers; Evaluation and analysis of cyber risks with regard to their potential impact on the company and their priority with regard to necessary protective measures.
  • Mitigation Planning: Development and assignment of appropriate countermeasures as well as creation of roadmaps for the effective management of digital threats.
  • Risk Management: Translation of security incidents and threats into concrete, business-relevant risks with appropriate countermeasures.
  • Business Process Improvement: Continuously improve the processes used to manage the cyber risk lifecycle and increase the maturity of the cyber risk desk.
  • Operational Reporting: Preparation of project reports on the status, impact and necessary actions related to identified risks.
  • Regulatory Compliance: Creation of risk analyses and management processes that comply with applicable regulatory standards (SOX, PCI, data protection).
  • Risk Assessment: Identification of a wide range of cyber risks arising from changes in the digital landscape and the increasing capabilities of attackers; Evaluation and analysis of cyber risks with regard to their potential impact on the company and their priority with regard to necessary protective measures in accordance with applicable regulatory standards (SOX, PCI, data protection).
  • Risk evaluation: Carrying out an initial risk assessment (likelihood, impact, risk level) including a precise description of the risks, effects and probability of occurrence; Assessment and detailed description of the remaining residual risk (likelihood, impact, risk level) after potential implementation of the identified risk mitigation measures

Required skills:
  • Experience in Compliance & Audits
  • Knowledge of GRC Tools
  • Extensive experience in Risk Management/Assessments
  • Extensive experience in IT Security
  • Auditing Skills
  • Knowledge in different Firewalls systems
  • Knowledge in Infrastructure Management
  • Knowledge in ISO/IEC 27001
  • Knowledge in Project Management
  • Extensive experience Risk Management
  • Safety Principles
  • Solid knowledge of Penetration Testing
  • Strategic Thinking
  • Experience in the Telecommunication industry - desired
  • Experience in Vulnerability management

Languages:
  • German – fluent
  • English – fluent

Start: January 2026
Duration: until 31.12.2026
Occupancy: full-time
Location: remote
 

Share This Job

Powered by