Job
- Level
- Erfahren
- Job Feld
- IT, Security, Test/QA
- Anstellung
- Vollzeit
- Vertragsart
- Unbefristetes Dienstverhältnis
- Ort
- Wien
- Arbeitsmodell
- Hybrid, Onsite
Job Zusammenfassung
In dieser Rolle entwickelst du ein dynamisches Informationssicherheits- und Qualitätsmanagementsystem, koordinierst Audits, überwachst gesetzliche Anforderungen und förderst Sicherheitskonzepte in Projekten. Du nutzt moderne Tools zur Automatisierung und zur Verbesserung des Risk
Job Technologien
Deine Rolle im Team
- Maintain and improve our Information Security Management System (ISMS) and Quality Management System (QMS), moving away from static documents toward dynamic, integrated frameworks.
- Coordinate internal and external audits (ISO 27001, ISO 9001) by leveraging automated evidence collection where possible to reduce manual administrative overhead.
- Monitor regulatory developments (such as NIS2 and GDPR) using intelligent research tools to quickly identify gaps and translate them into internal actions.
- Streamline vendor risk management by utilizing tools to analyze third-party security documentation and assess risk scores efficiently.
- Collaborate with cross-functional teams to embed "Security-by-Design" principles, ensuring compliance requirements are integrated into Jira workflows rather than treated as an afterthought.
- Contribute to incident response readiness and reporting, ensuring our playbooks are up-to-date and actionable.
- Use AI-assisted writing tools to draft, update, and standardize security policies and procedures, ensuring they remain clear and accessible to the entire company.
- Conduct internal awareness sessions that go beyond standard slides, creating engaging, relevant content for our tech-focused team.
Unsere Erwartungen an dich
Qualifikationen
- A familiarity with ISO 27001, ISO 9001, and GDPR, with a curiosity or exposure to upcoming frameworks like NIS2.
- A "Tech-First" mindset with a willingness to use modern GRC platforms and AI productivity tools to automate routine compliance tasks.
- Basic knowledge of risk management frameworks (e.g., ISO 31000, COBIT) and an ability to prioritize risks based on business context, not just theoretical severity.
- A proactive, detail-oriented nature with strong organizational skills, preferring to build a sustainable process rather than a temporary fix.
- Excellent communication skills in English are mandatory, as you will need to explain compliance needs to developers and stakeholders; German is a plus.
Erfahrung
- 2–4 years of experience in Information Security, IT Risk, or Compliance, with a solid understanding of the "why" behind the controls.
Benefits
Work-Life-Integration
- 🕺No Dresscode
- 🧳Relocation Package
- 🙅♂️No All-In-Verträge
- 🏠Home Office
- ⏰Flexible Arbeitszeiten
- ⏸Bildungskarenz/Auszeit
- 🚌Gute Anbindung
Essen & Trinken
Mehr Netto
Gesundheit, Fitness & Fun
Job Standorte
Themen mit denen du dich im Job beschäftigst
Das ist dein Arbeitgeber
fiskaly GmbH
Wien
fiskaly is the leading provider for a cloud-based solution regarding fiscalization in Germany. We are on a mission to make the world a safe and fair place by enabling trusted records. Our team provides a robust and reliable digital signature service to ensure the legitimacy of your receipts, while keeping the solution simple and convenient.
Description
- Unternehmensgröße
- 50-249 Employees
- Gründungsjahr
- 2019
- Sprachen
- Deutsch, Englisch
- Unternehmenstyp
- Startup
- Arbeitsmodell
- Hybrid, Onsite
- Branche
- Internet, IT, Telekom
Dev Reviews
by devworkplaces.com
Gesamt
(2 Bewertungen)3.5
Workingconditions
4.4Culture
3.2Engineering
2.7Career Growth
4.0
Security & Compliance Specialist
- Ort
- Wien
- Arbeitsmodell
- Hybrid, Onsite
- Diversität
- Für alle Personen geeignet (m/w/d)
