Auditor - ISO 27001 (f/m/d)

Job Description

Looking for a chance to create a positive impact on our society?

Securing the Future Enterprise Today

Whether in the field of Industry, Smart Infrastructure or Energy: Digitalization is simplifying many facets of life. Therefore, we need to handle the associated risks caused through Cyber-criminals.

“Making an impact that matters”, that’s the motto we live by. We at Siemens are continuously pushing the boundaries of sectors such as the Internet of Things (IoT), big data analytics, artificial intelligence (AI) and cloud technologies. However, with such digital innovations come security challenges and vulnerabilities, thus growing the risk of cyberattacks.

We’re looking for forward-thinking, results-oriented game-changers like you to join our team of specialists. Together let’s grow our ground breaking security services that protect our data and the digital assets of our customers. Help us seek tomorrow’s challenges today!

As Senior Auditor you will:
  • Plan, prepare and conduct assessments pertaining to the second line of defense; assess and monitor the status quo of cybersecurity in defined areas with the goal of continuous improvement.
  • Prepare and conduct cybersecurity audits (e.g., ISO 27001, NIST, IEC 62443) and coordinate friendly hacking activities on Siemens systems, products, solutions and services.
  • Work at eye level with security architects to challenge their assumptions and improve their solutions whenever possible.
  • Design attack scenarios to jeopardize state-of-the-art technologies and prove if they are vulnerable.
  • Plan and conduct cybersecurity audits to assess the adequacy and effectiveness of cybersecurity controls in compliance with policies and regulations.
  • Provide timely status updates to stakeholders, ensure escalation of potential issues and actively seek clarification on audit project requirements.
  • Identify root causes of findings and assist customers in developing improvement measures.
  • Lead and participate closing meetings with management.
  • Contribute to the improvement of internal processes, tools and documentation.
  • Conduct research/be up to date on latest developments in cybersecurity technologies and threats.
  • Communicate potential risks and report findings and recommendations to management
  • Coach cybersecurity analysts and working students.

This is what you bring to the table - skills with which you will shape the future:

  • Strong academic history (university degree in Computer Science, Engineering, or other related field). Master's Degree nice to have.
  • Profound professional experience within Siemens or a related industry, or a ‘Big 4’ accounting firm in the fields of cybersecurity, IT audits, penetration testing and / or development of industrial IT services and solutions.
  • Willingness to learn about the latest trends in cybersecurity and keep up to date in a continuously challenging environment.
  • Profound knowledge in some of the following areas: cybersecurity, SAP security, SCADA, web application testing, mobile security, IT general controls, data protection and information security requirements, industrial security controls, software development lifecycle, COBIT.
  • Solid project management skills, with experience working in multicultural environments.
  • Experience with agile methods / SCRUM.
  • Good communication and presentation skills.
  • Fluent in English (spoken and written).
  • Willingness to travel globally (main country Germany).
  • Motivated, creative, proactive, innovative, communicative, with solid analytical skills, and a self-guided work style.
  • Certifications such as ISO 27001, IEC 62443, OSCP, OSWE, CEH, CISSP, CISA, CISM preferred but not required.

This is what we offer you - an inspiring working environment

  • Exciting, diverse and sophisticated projects.
  • Opportunity to grow and develop technical and social skills.
  • Funding of individual training opportunities and certifications.
  • A strongly team-oriented culture and work-life balance.
  • Flexible working hours.
  • Flexible work from home or work from the Siemens office conditions.

Please, include a CV in English so that it can be reviewed.

Join us! Together we can make our digital world more secure.

We’ve got quite a lot to offer. How about you?

Do you want to know more about Cybersecurity at Siemens?

Organization: Cybersecurity

Company: Siemens S.A.

Experience Level: Experienced Professional

Full / Part time: Full-time

Can't find what you are looking for?

Let's stay connected

Can't find what you are looking for?