Careers

We are growing. With substance.

Cybervize is hiring senior consultants and engineers to help build the ISMS platform and the consulting business for DACH mid-market clients. Düsseldorf, remote-first DACH. Consulting roles work on-site at client engagements when needed.

What holds us together

Three principles that guide every application and every engagement.

Methodology before buzzwords

Cybervize grew out of 25 years of ISMS practice, codified into software. We hire people who understand that methodology and develop it further, not people who need new marketing terms.

Substance over speed

We deliver in a structured way, not in 48 hours. Cybervize engagements require care, documentation and resilience under BSI audits, not SaaS velocity.

Data sovereignty taken seriously

Made in Germany, AI under our own control. We host in Germany, run our LLMs ourselves and never share client data with external model providers. If you treat that as a marketing line, this is not the right place.

Open Roles

Four profiles, one shared standard. Model and location per role.

Senior Cybersecurity Consultant (vCISO / Interim CISO)

Model: Full-time or senior freelancer Düsseldorf or remote DACH, travel to engagements

Responsibilities

Lead vCISO or Interim-CISO engagements at mid-market and enterprise clients
ISMS build-out, risk management, BSI reporting flows, C-level management reporting
Platform-supported delivery with the Cybervize tooling: risk heatmap, measures register, audit trail
Primary contact for client management on security topics and during audits

Must-have

At least ten years of ISMS experience
ISO 27001 Lead Auditor or equivalent accreditation
Hands-on experience implementing NIS-2 and DORA
Business-fluent German and English

Nice-to-have

BSI IT-Grundschutz Auditor
Industry specialisation (financial services, KRITIS, manufacturing)
Experience with IEC 62443 or OT security

Language requirement (mandatory)

Business-fluent German (C1 level) in writing and speech. Applications without this language proficiency cannot be considered for this role.

Senior ISMS Lead / ISO 27001 Lead Auditor

Model: Senior freelancer pool or full-time Remote DACH, travel per engagement

Responsibilities

ISMS implementations and audit preparation at mid-market clients
Independent delivery of gap analyses, measures roadmaps and pre-audit reviews
Bridge role between consulting and platform configuration: set up the ISMS module per client, map controls, model reports
Training and coaching of client-internal security staff

Must-have

ISO 27001 Lead Auditor (mandatory)
At least seven years of ISMS practice
Experience across at least five audit cycles
Methodologically rigorous in risk assessment and measures mapping

Nice-to-have

TISAX Provider
BSI IT-Grundschutz
BS 25999 or ISO 22301 (BCM)
Tooling experience with ISMS platforms (in-house or third-party)

Language requirement (mandatory)

Business-fluent German (C1 level) in writing and speech. Applications without this language proficiency cannot be considered for this role.

Cybersecurity Platform Engineer

Model: Full-time Remote DACH, optional Düsseldorf presence

Responsibilities

Build out the Cybervize platform: ISMS, BCM, Assessment and TPRM modules
Backend in Python and TypeScript, data-model extensions, new connectors and integrations
LLM service integration: local models, GraphRAG reasoning, token budgets, fallback logic
Maintenance of the audit-trail and permission layer (RBAC plus ABAC plus entity scoping)

Must-have

At least five years of backend engineering
Solid database and schema skills (Postgres or equivalent)
Understanding of security primitives: authentication, authorization, audit trails
Python and/or TypeScript

Nice-to-have

LLM or AI engineering
Compliance domain knowledge (ISO 27001, NIS-2, DORA)
Multi-tenant architecture experience
Next.js and React for frontend contributions

Internship: Platform Development and Client Demos

Model: Internship, three to six months (mandatory or voluntary) Hybrid Düsseldorf

Responsibilities

Work on backend or frontend tasks under engineering-team supervision: small features, data-model extensions, testing
Prepare client demos: build test data and demo scenarios in the platform, configure demo tenants, design demo flows in coordination with the consultant
Research regulatory developments (NIS-2 transposition, EU AI Act, DORA updates) as input for client material

Must-have

Studies in computer science, business informatics or IT security
Basic skills in at least one modern programming language (Python, TypeScript or similar)
Business-fluent German (mandatory)
Care in handling data models and tenant data

Nice-to-have

Initial exposure to ISO 27001 or similar frameworks
Git experience
Clear written communication for management audiences

Language requirement (mandatory)

Business-fluent German (C1 level) in writing and speech. Applications without this language proficiency cannot be considered for this role.

How to apply

One email is enough. We read every application ourselves, no applicant-tracking system in between.

1. Email to karriere@cybervize.de

Subject: Application [role title]. CV, a short motivation (half a page is plenty), two or three sharp references rather than a long list.

2. Response within ten working days

You will hear from us within ten working days, including for rejections. For interesting profiles a first call usually follows within three working days after our response.

3. Two conversations, then a decision

First call with the founder, second with a senior consultant or engineer from the relevant function. Between them, a small realistic case study aligned with your profile. No live-coding theatre, no logic puzzles.

Application email

karriere@cybervize.de

Please use karriere@cybervize.de only — no speculative applications via the contact form.

Your role not listed?

If you have a senior profile with a clear mid-market track record and believe you fit Cybervize, please reach out anyway. Speculative applications are read seriously when they are concrete.

karriere@cybervize.de