Senior Consultant / Internal Auditor for IT and Information Security (m/w/d)

More than lab. The Limbach Group currently consists of over 30 individual laboratories. The medically run individual laboratories have established themselves as a leading group of companies through competent medical advice, highly specialized diagnostics, a comprehensive range of services and a broad range of services. The laboratories are a reliable partner for established doctors, hospitals and other medical facilities. Senior Consultant / Internal Auditor for IT and Information Security (m/w/d) Entry level: Staff Location: Heidelberg Activity: non-medical activity Type: Full time, unlimited Business area: IT

The Limbach Group sets the highest standards for IT and information security. In order to support our internal audits and to ensure regulatory compliance, we are looking for IT administrators, system supervisors or software developers (m/w/d), who want to develop in the field of IT audit and security consulting and want to introduce their know-how from the IT field. We actively support you with structured training opportunities and certifications. As an internal consultant for IT and information security (m/w/d), you are responsible for identifying risks, assessing these and subsequent measures to improve the effectiveness of processes and guidelines within the distributed organisation. They ensure that the regulatory requirements of the IT Security Act 2, NIS2 and KRITIS roof law are complied with and that the identified risks are pragmatically minimized. Your main tasks and responsibilities: Planning and implementation of audits Implementation of audit plans for IT and information security audits and implementation of audits of IT infrastructure, applications and security controls Assessment of compliance with internal policies and external regulations Risk assessment Identification and assessment of IT and information security risks and development of risk mitigation and improvement measures Reporting and documentation Creating detailed audit reports with findings, reviews and recommendations Documentation of test results and follow-up of the implementation of measures Consulting and training Advising healthcare facilities within the Limbach Group with regard to IT and information security risks and controls Implementation of training and awareness-raising programmes for employees on information security and best practices Monitoring and improvement Monitoring the implementation of corrective measures and continuous improvement of IT controls Updating test approaches and methods according to current best practices and technology trends Cooperation and communication Cooperation with IT departments and external auditors as well as communication of audit results and recommendations to management and other relevant stakeholders

Multiannual experience in IT / Information Security, e.g. as IT administrator, system supervisor or software developer (m/w/d), ideally in a group environment Successfully completed studies (informatics, business informatics, medical informatics) or successfully completed training as a specialist (m/w/d) Knowledge of relevant standards and frameworks (e.g. ISO 27001, COBIT, NIST) Certifications such as CISA, CISM, CISSP or similar are advantageous Outstanding analytical skills and problem-solving competence High level of integrity, sense of responsibility and communication Ability to cooperate in interdisciplinary teams and to impart complex facts readiness to travel (15 % to 20 %)

You will find an attractive and modern workplace in front of us An unlimited working relationship is of course for us You work in a highly qualified and demanding team We offer you structured training opportunities in the field of IT audit and IT security standards, including certification support Further regular organizational development opportunities are available through our Limbach Academy We offer flexible working hours with up to three days of mobile work per week A canteen and free drinks are available in our house We provide you with special services such as a job ticket, service bike leasing and a company pension including employer grant JOBV1_EN