Information Security and Data Protection Auditor (f/m/d)

Information Security and Data Protection Auditor (f/m/d)

GEA Group makes an important contribution to a sustainable future with its solutions and services, particularly in the food, beverage, and pharmaceutical sectors.

The Expert Information Security Governance assures the information security compliance with regulatory, customer, and internal requirements regarding information security (e.g., ISO 27001, NIST, ISA/IEC 62443, IDW PS 980, and others).

Join GEA and make a positive impact: From safe food and beverages to life-saving medicines, GEA makes it possible. We also help our customers reduce CO2 emissions, protect water, and reduce and recycle waste.

GEA Group Services GmbH in Düsseldorf takes over the corporate functions of GEA AG, including areas such as corporate finance, legal, and IT, which provide central services for all company divisions. The location also houses the Digital HUB and the Center of Excellence (CoE).

We are looking for experienced and motivated Information Security and Data Protection Auditor (f/m/d) for deployment in Düsseldorf as soon as possible.

The responsibilities include:

1. Accountable for internal ISMS audits according to ISO 27001, as well as IT system audits, supplier audits, and data protection audits.
2. Responsible for the planning and preparation of audit programs for both information security and data protection.
3. Coordinating audit programs with the areas to be audited and the persons responsible for information security and data protection.
4. Preparing audit plans for the respective audits.
5. Preparing audit reports and reporting to the audited areas.
6. Following up on findings with deadlines.
7. Ensuring compliance with audit intervals.
8. Initiating external supplier audits.
9. Developing a system of key figures for audit performance and its continuous improvement.
10. Further developing internal audit standards and quality assurance of audit work.
11. Performing special audits due to special circumstances.
12. Being open to technical solutions for audit execution and providing impulses for the integration of tools into the audit process.
13. Acting as the contact person for the BISOs, RISOs, and LISOs responsible for the audited area.
14. Being independent as an auditor and free in judgment.
15. Evaluating neutrally without providing advice.

Your Profile / Qualifications:

1. Bachelor's or master’s degree in Information Technology, Computer Science, Economics, Law, or a related technical discipline.
2. Information Security Certifications (ISMS Lead Implementor, ISMS Lead Auditor, additional in accreditation of a certification body).
3. Beneficial (IT) Security Certifications (e.g., CISSP, CISM, CISA, ITIL, COBIT) but are not a must.
4. 5+ years of professional experience in information security and data protection.
5. In-depth know-how in management systems, audits, and dealing with audit findings.
6. Knowledge of security standards such as ISO, PCI, HIPAA, and SOX.
7. In-depth know-how in international Data Protection law (GDPR) and standards such as ISO 27701.
8. Experience in multivendor management and dealing with multiple suppliers.
9. Strong interpersonal skills in communication and collaboration.
10. Strong communication skills in English; local language is a plus.
11. Strong personal initiative and analytical ability.
12. Strong business acumen and problem-solving skills.
13. Capabilities in financial and budget ownership.

What we offer:

1. Work with a supportive and international team.
2. Modern working environment with flexible working options and home office for a good work-life balance.
3. A wide range of personal and professional training and development opportunities for your career planning.
4. Company pension scheme and accident insurance.
5. 30 days annual leave plus 24 & 31 December.
6. Attractive company benefits such as discounts on gym memberships.
7. JobRad including subsidy.
8. Good access to public transport and a subsidy for public transport use.

Did we spark your interest?
Then please click apply above to access our guided application process.