Flip GmbH
GRC Analyst(m/w/x)
Full-timeWith HomeofficeExperienced
Stuttgart, Berlin
New Job?Nejo!
Your personal AI career agent
Managing third-party vendor risk and data protection for a tech company. 3+ years ITGC, SOC 2, ISO 27001, PCI DSS, EU NIS2, and data privacy compliance required. Berlin relocation support, subsidized pension scheme.
Requirements
- 3+ years performing ITGC, SOC 2, ISO 27001, PCI DSS, EU NIS2, data privacy compliance
- Interpreting compliance regulations and mapping to system implementation
- Supporting data privacy regulations (GDPR, CCPA) and third-party risk management
- Developing and executing security awareness programs and trainings
- Highly organized and detail-oriented, independent work ability
- Industry compliance certifications (CISA, CISM, CISSP) are a plus
- Prior experience in SaaS environment, Cloud and AWS-based
Tasks
- Support information security compliance and certification programs
- Collaborate with cross-functional internal teams
- Work with external auditing agencies
- Support data protection and privacy
- Manage third-party vendor risk
- Lead end-to-end compliance readiness for NIS2
- Align with other key frameworks (PCI DSS, CSRD, ISO/SOC, EU AI Act)
- Plan and execute internal control assessments
- Coordinate external compliance audits
- Translate regulatory requirements into practical controls
- Drive cross-functional implementation across international teams
- Track remediation findings and evidence
- Assign and monitor remediation owners and deadlines
- Report remediation status to stakeholders
- Improve GRC maturity through continuous monitoring
- Maintain clear documentation
- Mentor junior team members
- Lead internal assessments
- Evaluate design and operational effectiveness of security policies
- Validate internal controls to reduce compliance risk
- Develop comprehensive compliance reports and presentations
- Present compliance landscape to technical and executive audiences
Work Experience
- 3 years
Education
- Bachelor's degreeOR
- Master's degree
Languages
- English – Business Fluent
Tools & Technologies
- IT General Controls (ITGC)
- SOC 2
- ISO 27001
- PCI DSS
- EU NIS2
- GDPR
- CCPA/CPRA
- AWS
Benefits
Retirement Plans
- Subsidized pension scheme
Other Benefits
- Berlin relocation support
- Access to HelloFresh Academy
Corporate Discounts
- Exclusive discounts on weekly HelloFresh box
Free or Subsidized Food
- Discounted office meals
Learning & Development
- German language learning budget
Mental Health Support
- Mental health support
- Wellbeing platforms
Parking & Commuter Benefits
- Transportation perks
Family Support
- Working-parent-friendly benefits
Healthcare & Fitness
- 24/7 gym access
Workation & Sabbatical
- Sabbatical leave options
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of HelloFresh and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Like this job?
BetaYour Career Agent finds similar jobs for you every day.
Not a perfect match?
- Moss
Information Security GRC Lead(m/w/x)
Full-timeWith HomeofficeExperiencedBerlin - Flip App
GRC Analyst(m/w/x)
Full-timeWith HomeofficeExperiencedStuttgart, Berlin - Shiftmove
(Senior) Information Security Officer(m/w/x)
Full-timeWith HomeofficeExperiencedBerlin - Zalando Payments GmbH
Senior Security Engineer(m/w/x)
Full-timeWith HomeofficeSeniorBerlin
Managing third-party vendor risk and data protection for a tech company. 3+ years ITGC, SOC 2, ISO 27001, PCI DSS, EU NIS2, and data privacy compliance required. Berlin relocation support, subsidized pension scheme.
Requirements
- 3+ years performing ITGC, SOC 2, ISO 27001, PCI DSS, EU NIS2, data privacy compliance
- Interpreting compliance regulations and mapping to system implementation
- Supporting data privacy regulations (GDPR, CCPA) and third-party risk management
- Developing and executing security awareness programs and trainings
- Highly organized and detail-oriented, independent work ability
- Industry compliance certifications (CISA, CISM, CISSP) are a plus
- Prior experience in SaaS environment, Cloud and AWS-based
Tasks
- Support information security compliance and certification programs
- Collaborate with cross-functional internal teams
- Work with external auditing agencies
- Support data protection and privacy
- Manage third-party vendor risk
- Lead end-to-end compliance readiness for NIS2
- Align with other key frameworks (PCI DSS, CSRD, ISO/SOC, EU AI Act)
- Plan and execute internal control assessments
- Coordinate external compliance audits
- Translate regulatory requirements into practical controls
- Drive cross-functional implementation across international teams
- Track remediation findings and evidence
- Assign and monitor remediation owners and deadlines
- Report remediation status to stakeholders
- Improve GRC maturity through continuous monitoring
- Maintain clear documentation
- Mentor junior team members
- Lead internal assessments
- Evaluate design and operational effectiveness of security policies
- Validate internal controls to reduce compliance risk
- Develop comprehensive compliance reports and presentations
- Present compliance landscape to technical and executive audiences
Work Experience
- 3 years
Education
- Bachelor's degreeOR
- Master's degree
Languages
- English – Business Fluent
Tools & Technologies
- IT General Controls (ITGC)
- SOC 2
- ISO 27001
- PCI DSS
- EU NIS2
- GDPR
- CCPA/CPRA
- AWS
Benefits
Retirement Plans
- Subsidized pension scheme
Other Benefits
- Berlin relocation support
- Access to HelloFresh Academy
Corporate Discounts
- Exclusive discounts on weekly HelloFresh box
Free or Subsidized Food
- Discounted office meals
Learning & Development
- German language learning budget
Mental Health Support
- Mental health support
- Wellbeing platforms
Parking & Commuter Benefits
- Transportation perks
Family Support
- Working-parent-friendly benefits
Healthcare & Fitness
- 24/7 gym access
Workation & Sabbatical
- Sabbatical leave options
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of HelloFresh and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Like this job?
BetaYour Career Agent finds similar jobs for you every day.
About the Company
HelloFresh
Industry
IT
Description
HelloFresh is one of Europe's fastest-growing tech powerhouses, offering meal kit delivery services and a diverse workplace culture.
Not a perfect match?
- Flip GmbH
GRC Analyst(m/w/x)
Full-timeWith HomeofficeExperiencedStuttgart, Berlin - Moss
Information Security GRC Lead(m/w/x)
Full-timeWith HomeofficeExperiencedBerlin - Flip App
GRC Analyst(m/w/x)
Full-timeWith HomeofficeExperiencedStuttgart, Berlin - Shiftmove
(Senior) Information Security Officer(m/w/x)
Full-timeWith HomeofficeExperiencedBerlin - Zalando Payments GmbH
Senior Security Engineer(m/w/x)
Full-timeWith HomeofficeSeniorBerlin