AT&S is a leading global manufacturer of high-end IC substrates and printed circuit boards. AT&S industrializes leading-edge technologies for its core business segments Mobile Devices & Substrates, Automotive & Aerospace, Industrial and Medical and high-performance computing for AI applications. We are looking for talent eager to shape the future of our interconnected world. With plants in Austria, China, India, Malaysia and sales offices around the globe, we offer excellent career opportunities for creators, innovators and enablers with the drive to make a difference.
To enhance our successful IT Team at the Headquarters in Leoben, Austria, we are looking for a passionate
Senior IT GRC Consultant – CoE IT Infrastructure & Security
In your role, you will support the organization in meeting internal and external security, regulatory, and compliance requirements. Acting as a key interface between IT, Information Security, and audit stakeholders, you ensure structured preparation, coordination, and follow‐up of audits and assessments. Through your contribution to governance, risk management, and internal control processes, you help strengthen transparency, consistency, and continuous improvement within our security and compliance landscape.
* Represent Corporate IT in internal and external security and compliance audits.
* Coordinate and prepare audits (e.g., ISO 27001, NIS2, TISAX) together with InfoSec, CISO, and ISO stakeholders.
* Act as a central interface between IT, InfoSec, auditors, and business stakeholders.
* Support the development and continuous improvement of the Internal Control System (ICS).
* Track audit findings, define remediation actions, and monitor implementation.
* Support risk assessments, compliance reporting, and creation of management summaries.
* Ensure consistent application and understanding of security controls within IT.
* Contribute to policies, procedures, and governance documentation.
* Completed education in Computer Science, IT Security, Engineering, or a comparable field.
* Proven experience in IT Security, IT Audit, Compliance, Risk Management, or GRC‐related roles.
* Experience working in international environments and collaborating with cross‐functional teams.
* Strong understanding of IT security principles, frameworks, and risk management practices (e.g., ISO 27001/2, NIST, NIS2).
* Proven experience in preparing, coordinating, and supporting internal and/or external audits.
* Strong knowledge of ISO 27001, NIS2, TISAX, and NIST frameworks.
* Structured, reliable, and detail‐oriented working style with strong stakeholder management skills.
* Fluent in English; German is an advantage.
* A meaningful role with opportunities for long-term growth in an international environment
* Chance to actively contribute to AT&S ́ success and to create value
* A structured and tailor-made onboarding program along with continual training opportunities
* Modern company canteen with freshly prepared meals every day
* Free parking spaces and e-charging stations
* Diverse health measures and a wide range of employee benefits
AT&S is an equal opportunity employer. We embrace diversity and are dedicated to empowering people to reach their potential by fostering their unique talents and strengths. The employment is in accordance with the Austrian Collective Agreement for the Electrical and Electronics Industry (https://www.feei.at/wp-content/uploads/2024/04/angestellte-2025-05-01.pdf), employment group F-G, and we offer competitive salaries and additional benefits based on your performance, experience and qualification.
JBRP2_AT