Information Security Specialist (German-speaking)
Information Security Specialist (German-speaking)
secfix
Secfix is seeking a remote Information Security Specialist fluent in German and English to support customers in the DACH region. The role involves managing the security and compliance lifecycle, providing guidance to clients, and collaborating on AI product features. Candidates should have a strong background in information security and governance, risk, and compliance (GRC).
Qualification
- Fluent in German (C1/C2) and English
- 3+ years of hands-on experience in information security and GRC
- Experience with cloud platforms such as AWS, Azure, or GCP
- Familiarity with containerization and orchestration tools like Kubernetes and Docker
- Knowledge of security frameworks including ISO 27001, SOC 2, and NIST
- Strong communication skills for client interaction and executive reporting
- Ability to work in a remote environment and manage time effectively
Responsibility
- Own the compliance lifecycle from onboarding to certification and continuous compliance
- Assess customer security/compliance frameworks and provide improvement recommendations
- Implement security recommendations and act as auditor liaison for clients
- Harden tech stack by assessing posture and mapping controls to cloud services
- Tailor security programs across various frameworks like ISO 27001, SOC 2, and NIST
- Build and run runbooks, templates, and a knowledge base for security processes
- Communicate with executives and represent Secfix in public forums as needed
- Collaborate with Product and Engineering teams to shape AI product features based on customer insights
