About the Role:
We are looking for a Cybersecurity Program Manager fluent in German and English to join our growing management and IT consulting team.
In this role, you’ll be responsible for end-to-end delivery of cybersecurity initiatives—ensuring alignment with compliance frameworks, technical architecture, and business risk priorities. You will work closely with clients, internal teams, and external stakeholders to strengthen security posture and support digital transformation through robust security program management.
Key Responsibilities:
* Architect, drive, and oversee enterprise-wide cybersecurity programs, ensuring alignment with organizational risk appetite, security governance models, and compliance mandates.
* Facilitate cross-functional stakeholder engagement across IT infrastructure, InfoSec, compliance, and business leadership to ensure seamless program execution and operational buy-in.
* Lead program governance and execution frameworks, including risk assessment, remediation planning, KPI/OKR reporting, and change control processes.
* Ensure cybersecurity controls and program components align with leading industry frameworks (e.g., ISO/IEC 27001, NIST CSF, CIS Controls) and comply with regional regulatory obligations (e.g., GDPR, NIS2 Directive, BSI IT-Grundschutz).
* Act as a primary liaison for internal audit, external regulators, and client-facing security assurance, communicating program posture and remediation progress in both German and English.
* Collaborate with security architects and engineering teams to ensure program alignment with cloud security strategies, identity and access management (IAM), and zero trust architecture principles.
* Monitor the evolving threat landscape, regulatory changes, and vulnerability intelligence feeds to adapt program roadmaps and risk mitigation strategies accordingly.
* Contribute to cybersecurity consulting engagements, including RFP responses, solution design, and delivery planning, particularly in program oversight and GRC (Governance, Risk & Compliance) domains.
Skills & Qualifications:
* 5+ years of experience in cybersecurity program or project management, ideally in consulting or enterprise environments
* Strong technical understanding of cybersecurity architecture, governance, and regulatory compliance
* Fluency in German and English (written and spoken) is required
* Deep knowledge of security frameworks and methodologies (e.g., NIST, ISO/IEC 27001, CIS Controls, BSI, MITRE ATT&CK)
* Demonstrated ability to lead cross-functional teams and manage large-scale cybersecurity initiatives
* Relevant certifications such as PMP, CISM, CISSP, ISO 27001 Lead Implementer/Auditor are highly desirable
* Bachelor's or Master’s degree in Cybersecurity, Information Systems, Engineering, or related field
* Understanding of cloud platforms (e.g., AWS, Azure, GCP) and modern enterprise IT environments is a plus
Contracting Details:
* Salary: Competitive & benefits package
* Start Date: Immediately
* Location: EU, UK
* Job Type: Full-time
About London Strategy:
We are a boutique management and IT consulting firm based in London with vast experience in M&A, IT, and transformation services in the Life Science industry. Our current client base is predominantly in the Medtech and Pharma industry. Our team transforms complexity into priority actions, a clear timeline, and executive decisions supported by appropriate governance. You will be able to work with senior advisors with Big-4 and top-tier advisory firm backgrounds. Our success comes from a shared belief in rolling up our sleeves, working hard to solve complex challenges, executing plans, and implementing technology to help transform organizations. As we continue to grow and deepen our impact on organizations worldwide, we seek the right people to join us on our mission.