Cyber Security Specialist - GRC
A career at Lilium is for those who want to do something extraordinary. We take pride in pushing the boundaries of engineering, technology and customer experience.
As part of a team, you will tackle challenges and deliver something that has never been done before. By joining Lilium you will have the opportunity to work with a world-class entrepreneurial team of more than 950 people who are as passionate about changing the world as you are.
You will always act with safety and integrity in mind and embody our core behaviors of efficient and positive collaboration, ownership of time, continuous improvements and, ultimately delivering results.
We thrive on diversity and creating an inclusive culture, with more than 50 nationalities currently working hard to bring our vision of a sustainable world to life.
Your role and your team:
You would be one of the early joiners in the growing Cyber Security function at Lilium. You will have the opportunity to shape overall Security Governance Risk and Compliance landscape for both IT and OT sides of our business.
You will be a part of the Cyber Security team and report directly to the Head of Cyber Security. This role requires onsite presence for a minimum of 2-3 days a week, depending on the need.
Your Day to Day Tasks:
- Develop and maintain a robust security risk and compliance framework and ensure proper alignment to relevant industry frameworks (e.g., SOX, ISO, NIST, etc.).
- Collaborate and adapt the process, risk, control framework, map organizational controls and establish the accountability and ownership for cyber security risk management and control activities.
- Provide precise guidance and feedback on the implementation of technical architecture and engineering requirements.
- In close collaboration with your colleagues within business you will help to work on action plans, non-conformities and provide management reporting’s.
- Developing an overall Cyber Security Threat Landscape covering all aspects of our business.
- Lead cross-functional risk management initiatives and projects that impact multiple risk disciplines and/or business units.
- Perform regular internal and reviews/audits against adopted standards and security policies.
- Proactively run a comprehensive security awareness trainings and campaigns for our cyber security policies and practices.
Your Profile:
- Ability to translate requirements into business language and priorities, and continuously work with them to develop business and security risk-appropriate control implementation solutions while balancing business priorities with compliance needs.
- Ability to work efficiently and independently in a fast-paced, innovative environment.
- Experience in conducting internal and external risk assessments.
- Ability to work closely with auditors, regulators, and internal stakeholders and articulate technical concepts.
- Experience working with security-related regulatory requirements, such as NIST, PCI, CSA, SOX and ISO 27001.
- Work experience in an international environment of atleast 5 years.
- Strong communication and interpersonal skills.
- Fluent English language skills (written and spoken) and German would be good to have.
#LI-RK1
Want to know more? Then view our 'Why join Lilium' page!
Life at Lilium:
The wellbeing of our employees is a high priority. In our HQ we have many initiatives such as free healthy food and drinks, free in-house gym and health days. In remote offices we offer online opportunities to stay connected and develop yourself as well including our culture club, learning terminal, Employee Assistance Program and many more.
Lilium is an equal opportunity employer and welcomes applications from all qualified individuals regardless of ethnicity, sex, disability, religion/belief, sexual orientation or age.