Purpose of the RoleTo plan, execute, and support independent information security assurance activities, including internal audits, control assessments, and reviews of cybersecurity practices across METRO AG and its entities. This role ensures the effectiveness, adequacy, and compliance of security controls in accordance with internal policies, regulatory requirements, and best practices.Key ResponsibilitiesPlan and perform information security assurance activities, including internal security audits, ITGC assessments, and control reviews across IT and OT environments.Assess the design and operational effectiveness of security controls based on frameworks such as ISO/IEC 27001 and NIST.Identify and document control weaknesses, non-compliance issues, and risk exposures with actionable recommendations.Support internal and external audits.Collaborate with risk, compliance, and IT teams to track remediation of audit findings and ensure timely closure.Prepare clear, concise, and accurate reports on audit findings and assurance outcomes for senior stakeholders.Provide guidance to entities and departments in preparing for assurance assessments and building control maturity.Support the continuous improvement of the IS assurance program, methodology, and tooling (including automation where applicable).
- ID: #53957665
- State: North Carolina Düsseldorf 00000 Düsseldorf USA
- City: Düsseldorf
- Salary: USD TBD TBD
- Job type: Full-time
- Showed: 2025-06-03
- Deadline: 2025-08-02
- Category: Et cetera