Job Specifications
G+D makes the lives of billions of people around the world more secure. We create trust in the digital age with integrated security technologies in three business areas: Digital Security, Financial Platforms and Currency Technology. We have been a reliable partner for our customers for over 170 years with our innovative solutions for SecurityTech! We are an international technology group and traditional family business with over 14,000 employees in 40 countries. Creating Confidence is our path to success. Trust is the basis of our co-operation within G+D.
At Payment Technology, our mission is to be at the start of every transaction and to make it secure and simple. We also create contemporary payment and banking solutions for our digital age. As a one-stop shop, we produce and personalise hundreds of millions of payment cards every year and store their "digital twins" - mobile and digital. Would you like to actively shape the digital transformation with us?
Job Summary
We are seeking an Internal Auditor to lead and enhance our 3rd Line audit program across IT operations, cybersecurity, physical security, and emerging technologies such as AI. This role involves designing and executing risk-based audits, ensuring compliance with ISO 27001 and OWASP SAMM, and collaborating with 2nd Line stakeholders to understand risk and control frameworks, while maintaining strict indepedence in assessment and reporting.
Responsibilities
Develop and execute a risk-based audit plan covering IT, cybersecurity, and physical security
Lead end-to-end audit engagements, including scoping, fieldwork, reporting, and follow-up
Assess control effectiveness in areas such as network infrastructure, IAM, system hardening, and secure development
Conduct reviews of cybersecurity incident response, AI governance, and emerging technology risks
Evaluate physical security controls and vendor compliance
Perform compliance audits against standards like ISO 27001, PCI, GSMA, and OWASP SAMM
Qualifications, Experience And Educational Requirements
Work Experience:
5-7 years of experience in IT audit or risk roles
Skills and Competencies:
CISA, CIA, or equivalent certification
Strong knowledge of ISO 27001, OWASP SAMM, and cybersecurity frameworks
Ability to write and present audit findings in a clear, business-savvy manner
Proficiency in English is essential; additional language skills such as German or Spanish are a strong advantage
Excellent analytical, communication, and stakeholder engagement skills
Enjoys working in diverse, multicultural teams and collaborating across global functions
Education:
Bachelor’s or Master's in Information Security, Computer Science, or related field
Working Conditions:
Frequent travel
Flexibility to work across different time zones
Fast-paced environment
Sitting at the computer for long periods of time
Open Concept Office
Additional Information
This job description is not intended to be all inclusive. The candidate hired will also perform other reasonable related business duties as assigned by the Head of Corporate Audit in Munich. The company reserves the right to revise or change job duties as needed. This job description does not constitute a written or implied contract of employment. Giesecke+Devrient ePayments Canada Inc. is an equal opportunity employer and values diversity in its workforce, encouraging applications from all qualified individuals. Upon request by the applicant, accommodation will be provided in all parts of the hiring process. By applying to this position, you are confirming you possess either a Canadian citizenship, permanent resident status, or valid work permit. Please note: Reference Checks and Credit, Criminal Background Checks will be administered on suitably qualified candidates. Your application will be kept on file for up to two years.
About the Company
Giesecke+Devrient (G+D) is a global SecurityTech company headquartered in Munich, Germany. G+D makes the lives of billions of people more secure. The company shapes trust in the digital age, with built-in security technology in three segments: Digital Security, Financial Platforms and Currency Technology.
G+D was founded in 1852 and today has a workforce of more than 14,000 employees. In the fiscal year 2023, the company generated a turnover of 3 billion euros. G+D is represented by 123 subsidiaries and joint ventures in 40...
Know more