Job
- Level
- Experienced
- Job Field
- IT, Security, Test/QA
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Vienna
- Working Model
- Hybrid, Onsite
Job Summary
In this position, you will develop a dynamic Information Security and Quality Management System, coordinate audits, monitor regulatory requirements, and promote security concepts in projects. You will leverage modern tools for automation and risk assessment.
Job Technologies
Your role in the team
- Maintain and improve our Information Security Management System (ISMS) and Quality Management System (QMS), moving away from static documents toward dynamic, integrated frameworks.
- Coordinate internal and external audits (ISO 27001, ISO 9001) by leveraging automated evidence collection where possible to reduce manual administrative overhead.
- Monitor regulatory developments (such as NIS2 and GDPR) using intelligent research tools to quickly identify gaps and translate them into internal actions.
- Streamline vendor risk management by utilizing tools to analyze third-party security documentation and assess risk scores efficiently.
- Collaborate with cross-functional teams to embed "Security-by-Design" principles, ensuring compliance requirements are integrated into Jira workflows rather than treated as an afterthought.
- Contribute to incident response readiness and reporting, ensuring our playbooks are up-to-date and actionable.
- Use AI-assisted writing tools to draft, update, and standardize security policies and procedures, ensuring they remain clear and accessible to the entire company.
- Conduct internal awareness sessions that go beyond standard slides, creating engaging, relevant content for our tech-focused team.
This text has been machine translated. Show original
Our expectations of you
Qualifications
- A familiarity with ISO 27001, ISO 9001, and GDPR, with a curiosity or exposure to upcoming frameworks like NIS2.
- A "Tech-First" mindset with a willingness to use modern GRC platforms and AI productivity tools to automate routine compliance tasks.
- Grundkenntnisse in Risikomanagement-Frameworks (z. B. ISO 31000, COBIT) und die Fähigkeit, Risiken anhand des Geschäftskontexts zu priorisieren, nicht nur nach theoretischer Schwere.
- A proactive, detail-oriented nature with strong organizational skills, preferring to build a sustainable process rather than a temporary fix.
- Excellent communication skills in English are mandatory, as you will need to explain compliance needs to developers and stakeholders; German is a plus.
Experience
- 2–4 years of experience in Information Security, IT Risk, or Compliance, with a solid understanding of the "why" behind the controls.
This text has been machine translated. Show original
Benefits
Work-Life-Integration
- 🕺No Dresscode
- 🧳Relocation Support
- 🙅♂️No All-In Contracts
- 🏠Home Office
- ⏰Flexible Working Hours
- ⏸Educational Leave/Sabbatical
- 🚌Excellent Traffic Connections
Food & Drink
More net
Health, Fitness & Fun
Job Locations
Topics that you deal with on the job
This is your employer
fiskaly GmbH
Wien
At Fiskaly, we're the leading provider of cloud-based fiscalization solutions in Germany. Our mission is to make the world a safe and fair place by enabling trusted records. We provide a reliable and robust digital signature service that ensures the legitimacy of your receipts, while keeping our solution simple and convenient.
Description
- Company Size
- 50-249 Employees
- Founding year
- 2019
- Language
- German, English
- Company Type
- Startup
- Working Model
- Hybrid, Onsite
- Industry
- Internet, IT, Telecommunication
Dev Reviews
by devworkplaces.com
Total
(2 Reviews)3.5
Workingconditions
4.4Culture
3.2Engineering
2.7Career Growth
4.0
Security & Compliance Specialist
- Location
- Vienna
- Working Model
- Hybrid, Onsite
- Diversity
- Open for all genders
