Join our global team of experts 

At Diconium, we do digital business transformation across various industries. As a team member, you will work on projects that generate value from software, data, and AI by delivering strategies and solutions that challenge conventional industry practices and drive technological progress. Together with over 2,300 fellow experts, you enable Fortune 500 firms, global market leaders, and SMEs to maximize the impact of their digital initiatives and achieve digital excellence. In everything we do, we prioritize people and genuine human connections, ensuring a supportive and inclusive work environment. And we give you maximum flexibility thanks to our hybrid workplace. 

WHAT YOU CAN EXPECT

Security Assessments:

​ o Conduct security assessments based on the client’s assessment process, including:

- Plausibility checks of assessment requests and determination of ISMS relevance.

- Validation of security classification and relevance to select the correct assessment method.

- Execution of assessments (e.g., initial, reassessment, takeover), validating IT security controls based on NIST 800-53 and IAM-specific requirements.

o Prepare and deliver finalized assessment reports with documented findings and compliance evidence.

o Maintain and update assessment processes:

- Coordinate assessment roadmaps and escalation processes for pending or overdue items.

- Define updated assessment process requirements and map them to governance, risk, and compliance (GRC) tool functionalities.

- Implement process improvements and communicate changes (e.g., SIEM integration, IAM checklist audits).

o Manage documentation:

- Continuous filing of completed assessments in internal governance tools and repositories.

- Prepare evaluation documentation, workshops, and user-facing materials (quick guides, FAQs).

- Integrate regulatory requirements (e.g. EU AI Act) into assessment processes and tools.

Information Security Risk Management:

o   Support operational handling of the Risk Acceptance Process:

- Assist product/business owners in risk assessments, plausibility checks, and document preparation.

- Validate data quality and ensure readiness for Service Desk handover.

o   Develop and document processes within the Risk Acceptance framework:

- Create and maintain process documentation and supporting materials (How-To guides, KPI sheets).

- Ensure alignment with ISO 27005 and organizational risk management standards.

WHAT YOU BRING ALONG

Core GRC Expertise:

o   Strong knowledge of ISMS frameworks (ISO/IEC 27001, VDA ISA / TISAX, NIS2) and NIST SP 800-53 controls.

o   Experience conducting IT security assessments and risk analyses per ISO 27005.

o   Familiarity with OWASP Top 10 and IAM security requirements.

Regulatory & Compliance Knowledge:

o   Understanding of GDPR, EU AI Act implications, and audit readiness.

Technical & Process Skills:

o   Proficiency with GRC tools and documentation standards.

o   Ability to define KPIs, track process performance, and implement improvements.

Cloud & Infrastructure Security:

o   Awareness of security controls in Azure/AWS environments.

Project & Communication Skills:

o   Skilled in planning, coordinating, and facilitating workshops and stakeholder meetings.

o   Strong documentation and reporting capabilities for management reviews and compliance evidence.

Methodologies:

o   Familiarity with agile project management and continuous improvement practices.

WHAT WE HAVE TO OFFER

Discover new skills and improve your strengths, adapt your working day to your personal lifestyle, celebrate community, sustainability and diversity. And sweeten your working life with awesome perks and benefits!

Professional & Personal Growth: Develop yourself both professionally and personally through training programs, free language courses, competence centers and an active tech community.

Flexible Work-Life Balance: Benefit from hybrid work, workation, flexible hours, parental support and sabbaticals.

Embrace Diversity & Sustainability: Engage in our Sustainability Hub, diverse communities, Diversity Taskforce and after-work activities.

Comprehensive Benefits: Enjoy public transport tickets, job bikes, health offers, supplementary insurances, a pension plan and various discounts.

WHAT WE VALUE

At Diconium, we value and recognize the unique perspectives and experiences of each individual. With this in mind, we welcome and cherish every single application equally. At the same time, we stand up against any type of discrimination and harassment based on gender, age, skin color, religion, sexual orientation, origin, disability, gender identity and other protected characteristics.

YOUR WAY TO US

• Step 1: You submit your CV

• Step 2: We invite you to a first video call

• Step 3: We schedule a second interview

• Step 4: Optional we schedule an onsite visit in Ingolstadt

• Step 5: You like us, we like you? Welcome to Diconium!

If you have any questions, feel free to reach out.

Your contact person is