[Remote] Cyber Risk & Compliance Manager – January 2026

Note: The job is a remote job and is open to candidates in USA. KOMMLINk GmbH is seeking a Cyber Risk & Compliance Manager for a freelance position in the telco industry. The role involves conducting security audits, risk analysis, and developing mitigation strategies to manage cyber risks effectively. Responsibilities • Risk Analysis: Identification of a wide range of cyber risks arising from changes in the digital landscape and the increasing capabilities of attackers; Evaluation and analysis of cyber risks with regard to their potential impact on the company and their priority with regard to necessary protective measures. • Mitigation Planning: Development and assignment of appropriate countermeasures as well as creation of roadmaps for the effective management of digital threats. • Risk Management: Translation of security incidents and threats into concrete, business-relevant risks with appropriate countermeasures. • Business Process Improvement: Continuously improve the processes used to manage the cyber risk lifecycle and increase the maturity of the cyber risk desk. • Operational Reporting: Preparation of project reports on the status, impact and necessary actions related to identified risks. • Regulatory Compliance: Creation of risk analyses and management processes that comply with applicable regulatory standards (SOX, PCI, data protection). • Risk Assessment: Identification of a wide range of cyber risks arising from changes in the digital landscape and the increasing capabilities of attackers; Evaluation and analysis of cyber risks with regard to their potential impact on the company and their priority with regard to necessary protective measures in accordance with applicable regulatory standards (SOX, PCI, data protection). • Risk evaluation: Carrying out an initial risk assessment (likelihood, impact, risk level) including a precise description of the risks, effects and probability of occurrence; Assessment and detailed description of the remaining residual risk (likelihood, impact, risk level) after potential implementation of the identified risk mitigation measures. Skills • Experience in Compliance & Audits • Knowledge of GRC Tools • Extensive experience in Risk Management/Assessments • Extensive experience in IT Security • Auditing Skills • Knowledge in different Firewalls systems • Knowledge in Infrastructure Management • Knowledge in ISO/IEC 27001 • Knowledge in Project Management • Extensive experience Risk Management • Safety Principles • Solid knowledge of Penetration Testing • Strategic Thinking • Experience in Vulnerability management • German – fluent • English – fluent • Experience in the Telecommunication industry - desired Company Overview • Kommlink Group is a niche recruitment company providing freelance and permanent resourcing services to companies globally. It was founded in 2001, and is headquartered in München, Bayern, DEU, with a workforce of 11-50 employees. Its website is Apply tot his job Apply tot his job