The role

We’re looking for a new teammate to join us on the journey of keeping HelloFresh a trusted name - someone with a passion for security, compliance and appetite for new challenges. A GRC Analyst works in a variety of ways to plan, design, implement and maintain Governance, Risk and Compliance initiatives and the elements supporting those. You will be part of the squad responsible for creating, maintaining and improving HelloFresh’s security risk management program and remediation activities; information security and data privacy related processes, policies, and guidelines; supporting compliance and certification related activities; and driving security awareness and education.

What you’ll do

• Assist in the establishment and maintenance of the security risk management program
• Cooperate with various teams to identify, document, assess and remediate security risks
• Support the creation and update of security policies to establish and maintain a strong framework of security controls
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences
• Effectively communicate findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel
• Use formal project management skills in planning, tracking, and reporting to close the remediation loop
• Conduct third-party vendor security reviews and assessments regarding their security and data privacy status
• Facilitate and improve the security awareness program of the company

What you’ll bring

• At least 1 year of experience in the fields of Information Security / Governance, Risk and Compliance (GRC) / IT auditing
• Experience in working with compliance programs (NIST, ISO 27001 / 27007, PCI DSS, NIS2 Directive), standards, and regulation
• Thorough understanding of data privacy regulations (GDPR, CCPA)
• Ability to map and interpret security guidelines/controls to the actual implementation of systems, from various Security Frameworks
• Experience with the creation and maintenance of information security policies and guidelines
• Experience with developing and executing security awareness programs and training
• Excellent interpersonal and communication skills (in English)

Elevate your lifestyle! Join one of Europe's fastest-growing tech powerhouses in a dynamic phase of expansion.

• Immerse yourself in a diverse global community of 90+ nationalities.
• Enjoy a competitive compensation package that goes beyond the norm, with perks like a HelloFresh- subsidized Pension Scheme, Berlin relocation support, and a Hybrid working model.
• Elevate your lifestyle with exclusive discounts on your weekly HelloFresh box and office meals.
• Invest in your growth with a German language learning budget, and access to the HelloFresh Academy.
• Plus, we've got your well-being covered with mental health support, transportation perks, and working-parent-friendly benefits. From our 24/7 gym access,wellbeing platforms like Headspace and Spill, to sabbatical leave options, HelloFresh is not just a workplace; it's a lifestyle of perks and possibilities!