Stuttgart
Full-time | DEKRA SE | DE51000238-04
Tasks

You are responsible for establishing the target environment and managing auditing activities

• You will define the audit scope, objectives, and criteria, and developing an audit schedule
• You review the target of evaluation, security objectives, and requirements based on the risk profile
• You will audit conformity with infosecurity-related applicable corporate and local policies and execute the audit plan while collecting evidence and measurements
• You need to maintain the integrity of audit records and develop and communicate conformity assessment, audit, and maintenance reports
• You will monitor risk remediation activities and report the status of these activities

• You will attend Information Security Group meetings and support the Cyber Defence team to close non-conformities or accept risks

• Qualifications

Degree in information technology or similar

• Knowledge of infosecurity controls and standards, mainly the ISO 27000 suite and TISAX
• Familiarity with infosecurity recommendations and best practices
• Understanding of auditing standards, methodologies, and frameworks
• Auditing-related certifications
• Good knowledge of Microsoft Office 365 applications (SharePoint, Teams, Word, Excel, etc.)
• Basic understanding of the PowerBI tool

• Fluent in English

• Was wir bieten

Attractive salary, incl. Christmas bonus and vacation pay as well as company profit-sharing scheme

• 30 days vacation
• Flexible, mobile working
• Internal training and qualification options
• Events such as ski cup, motorcycle meeting or Christmas party
• Other great benefits: company pension, job bike leasing, job ticket/transportation costs, employee discounts, canteen with food subsidies, internal company health management, parking spaces, and much more

Frau Patricia-Sandra Nedelcu
+49 711 7861-2950
patricia-sandra.nedelcu@dekra.com

• You will define the audit scope, objectives, and criteria, and developing an audit schedule
• You review the target of evaluation, security objectives, and requirements based on the risk profile
• You will audit conformity with infosecurity-related applicable corporate and local policies and execute the audit plan while collecting evidence and measurements
• You need to maintain the integrity of audit records and develop and communicate conformity assessment, audit, and maintenance reports
• You will monitor risk remediation activities and report the status of these activities
• You will attend Information Security Group meetings and support the Cyber Defence team to close non-conformities or accept risk