It all starts with the mission: NVISO is here to protect European society from potentially devastating cyber attacks! This means we offer cyber security services to private and governmental organizations to help them better prepare for, prevent, detect and respond to cyber security incidents.

All of this is built on four fundamental values that define who we are: We are Proud, We Break Barriers, We Care and No BS! 

You have a strong interest in cyber security and believe the following to be applicable to you?

As a Cyber Strategy & Architecture Manager (m/w/d) – Fokus GRC, located in Germany, you will lead our team of CISOaaS or GRC consultants while actively contributing to client projects as well as contributing in pre-sales activities for strategic clients. Your role will be key in enhancing our clients’ cybersecurity posture by creating and driving security strategies and their programs throughout the company. Key responsibilities include, but are not limited to:

• Perform technical account management duties for specific top-tier, strategic clients;
• Leading and managing a team of CISOaaS/GRC consultants to deliver high-quality services to clients;
• Collaborating closely with clients to understand their business objectives, their risks and their unique security requirements;
• Assessing the security maturity of clients (using of ISO, BSI or NIST standards) to identify gaps and areas for improvement;
• Developing and implementing a fit-for-purpose security program (that aligns with industry standards);
• Driving the security program at clients, where you also act as the security champion, spreading the “gospel” on security;
• Conducting risk assessments, identifying potential vulnerabilities, and recommending risk mitigation strategies;
• Overseeing and supporting with the implementation of the security program, including policies, procedures, and controls;
• Providing updates to management on the ‘state of security’ at their company;
• Holding steering committees at the customer with relevant stakeholders to guide & adapt the security program, where needed;
• Involve yourself actively in the sales process by creating and presenting Statements of Work, project plans, requirements definitions,… for projects running in your team.

• Bachelor’s or Master’s degree in Business Administration, Information Security, or a related field;
• Professional certifications such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), ISO27001 Implementer/Auditor or equivalent are strongly preferred;
• Proven experience in being a CISO and/or having successfully implemented ISO27k or BSI Grundschutz at clients. This covers, but not limited to: risk assessment, security roadmap creation, CISOaaS and policy development;
• In-depth knowledge of relevant industry standards and frameworks, such as ISO 27001, DORA, NIST, NIS-2, GDPR, etc.;
• Familiarity with risk management methodologies and their application to cybersecurity;
• Quickly grasping the complexity and the business reasons for a company to perform security and adapting your communication style and the security program to make it fit for the client;
• Excellent English and German written and verbal communication skills to effectively convey complex concepts to technical and non-technical stakeholders;
• Leadership skills to manage a team and collaborate with clients and cross-functional teams;
• You are eligible for NATO CLEARANCE (see HERE for more information).

At NVISO, we care. We are committed to offering you a highly competitive remuneration package including financial and non-financial components:

• Working and learning from the best people in the European cyber security industry. We have multiple SANS Instructors working at NVISO, our staff has presented at popular hacking conferences (BlackHat, BruCON, OWASP, etc) and all of our technical staff can acquire deep technical security certifications (GSE, GXPN, GREM, GCFA, OSCP, etc);
• Generous training budget of 10.000 EUR + 10 man days for attending lectures rolling over 2 years;
• Support for technical growth with Cloud trainings + certifications (AWS, GCP, Azure);
• Regular team-building and fun events with legendary off-site events once a year. The location of the next team building is one of the most closely guarded secrets at NVISO… We can however disclose that we’ve visited Lisbon, Dubai and Malta over the past few years;
• Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team, whose role is to ensure your well-being and helps you grow in your career!
• Flexible working hours and home office possibilities (incl. working abroad weeks within the EU);
• Business Bike Leasing;
• BahnCard 50 1st class + public transfer ticket;
• 30 holidays;
• Company Pension Scheme;
• Cool offices in the center of Frankfurt, Munich and Vienna (with BBQ, kicker table, table tennis, playstations, etc.).