Salary

3 000EUR/month

From 3 000€ brutto/month + variable bonus*

*We are required by law to disclose basic wage component (minimum salary) for the advertised positions. This salary is for junior candidate. We carefully consider your professional qualifications and experience in our compensation package and/or whenoffering you other positions. Our goal is to pay our employee's fairly, with regard to the market situation and we are ready to welcome high-quality candidates in our team.

We are seeking a dedicated and experienced Cybersecurity Governance Specialist (IT/OT) to play a pivotal role in shaping and strengthening our organization's cybersecurity posture. In this critical position, you will be instrumental in developing, implementing, and continuously improving our cybersecurity governance framework, ensuring its robust alignment with industry-leading standards and regulatory requirements, and consistently embedding it across our diverse IT and OT landscapes.

Key Responsibilities

• Framework Development & Maintenance: Establish and maintain a comprehensive cybersecurity governance framework, aligning with recognized standards such as ISO/IEC 27001, IEC 62443, and CRA.
• Documentation & Oversight: Contribute to essential governance documentation, including charters, operating models, and decision frameworks. Oversee governance forums, such as architecture boards and risk committees, providing insightful analysis and meticulous documentation.
• Policy & Standard Management: Develop, review, and maintain clear and effective cybersecurity policies, standards, and procedures, ensuring their alignment with regulatory, certification, and business requirements.
• Architectural & Lifecycle Integration: Participate in architecture reviews to guarantee adherence to approved security principles. Monitor and facilitate the integration of cybersecurity throughout product, solution, and engineering lifecycles, and contribute to quality gate reviews for development and engineering activities.
• Risk Management & Compliance: Take responsibility for governance decisions related to risk acceptance and conditional approvals. Perform or support cybersecurity risk assessments for both IT and OT systems, and actively support internal and external audits, certifications, and regulatory assessments (e.g., ISO 27001, CRA).
• Performance Measurement: Contribute to the definition and maintenance of key cybersecurity governance metrics (KPIs/KRIs) to track and measure our effectiveness.

Required Qualifications & Experience

Education

• Bachelor’s degree in information security, Computer Science, Engineering, or related field (or equivalent experience).

Experience

• Minimum 5 years of experience in cybersecurity, information security, or OT security roles.
• Experience in IT/OT governance
• Experience working with or alongside with development teams, architecture or engineering teams and compliance or audit functions
• Exposure to OT / industrial environments (SCADA, ICS, engineering networks) is strongly preferred.

Technical & Domain Knowledge

• Strong understanding of core cybersecurity principles, including governance, risk-based security decision-making, and architectural design.
• Familiarity with key industry frameworks and standards, such as ISO/IEC 27001/27002, Cyber Resilience Act (CRA), NIS2, and IEC 62443.
• In-depth understanding of IT/OT security differences and constraints.
• Comprehensive general cybersecurity background covering identity and access management, network segmentation, logging and monitoring, and secure design principles.

Skills & Competencies

• Strong analytical and documentation skills.
• Ability to translate technical topics into governance-level language.
• Structured, methodical approach to problem solving.
• Ability to work across disciplines and communicate with technical and non-technical stakeholders.

Certifications (Preferred)

• ISO/IEC 27001 Lead Implementer or Lead Auditor
• CISSP, CISM, or equivalent

We offer:

• Home office, telework
• Flexible working hours (9:00 – 15:00), short Fridays
• Bridge days – 5 days/year
• Sick days – 3 days/year
• Additional paid leave
• Cafeteria system - BenefitPlus = 300 points / € per year
• Contribution to 3rd pillar pension up to 3% of gross salary (after the employment trial period)
• Sick leave compensation and Sick Leave to Care for a Family Member compensation (up to 100% of salary, 20 days/year)
• Childbirth bonus of 300€
• Contribution for attending a preschool facility (200€)
• Contribution for representative sports activities
• MultiSport
• 2 SIM cards with discounted employee flat rate also for family members
• Employee referral bonus up to 2 000€
• Opportunity to invest in the purchase of Siemens shares
• Discounts for employees (electronics, language courses, vacation stays...)
• Discounted employee´s loans
• Wellbeing program, Health Day, team-building program
• Education in various fields of your choice
• Work anniversary present and life anniversary contribution
• Valuable gift on the occasion of retirement