Grc & Information Security Specialist (m/w/d)

Flipapp

Stuttgart, Germany
Hybrid (on-site with remote flexibility)
2-4 years grc or information security experience
Iso 27001 framework expertise
Tisax, soc 2 type ii, or cyber essentials plus knowledge
Flipapp is seeking a GRC & Information Security Specialist to lead their compliance activities, reporting directly to the Head of IT. The ideal candidate should have 2-4 years of relevant experience in GRC or information security, with expertise in frameworks like ISO 27001, TISAX, and SOC 2

Job Summary

  • The role serves as a central bridge between compliance requirements and technical teams to support international growth.
  • Candidates will manage the full audit lifecycle including coordination of internal and external audits across multiple frameworks.
  • The company offers a remote-first work model with opportunities for occasional in-person collaboration in Berlin or Stuttgart.

Matching Summary

Match Score: 85

Flipapp is seeking a GRC & Information Security Specialist to lead their compliance activities, reporting directly to the Head of IT. The ideal candidate should have 2-4 years of relevant experience in GRC or information security, with expertise in frameworks like ISO 27001, TISAX, and SOC 2.

Skills & Requirements

Must-have

  • 2-4 years GRC or Information Security experience
  • ISO 27001 framework expertise
  • TISAX, SOC 2 Type II, or Cyber Essentials Plus knowledge
  • Policy lifecycle management for 50+ policies
  • Risk register and treatment plan management
  • Fluent German and English communication skills

Nice-to-have

  • B2B SaaS sector background
  • Experience with GRC software and automation tools
  • Direct collaboration with engineering teams
  • Startup environment experience

Key Requirements

  • 2-4 years relevant professional experience
  • Fundamental practice experience with ISO 27001
  • Business fluent proficiency in German and English

Work Rights

Not specified

Tailored Resume

Cover Letter