Global Cybersecurity Compliance Manager

Stellenbezeichnung: Global Cybersecurity Compliance Manager (m/f/d)

Hybrid, Garching near Munich

We are seeking a highly skilled and motivated Global Cybersecurity Compliance Manager to join our growing Group Cybersecurity GRC team. This is a unique opportunity to shape and lead cybersecurity compliance programs across a multinational, NYSE-listed organization with operations in over 40 countries. In this role, you will be responsible for designing and driving a unified cybersecurity compliance framework that aligns with business objectives and regulatory requirements.

While the scope spans multiple frameworks (e.g., PCI DSS, ISO 27001, SOX, SEC, GDPR), your immediate focus will be on orchestrating PCI DSS governance across our global retail and eCommerce operations.

What you will be doing:
Cybersecurity Compliance Program Leadership

• Design, implement, and maintain a unified cybersecurity compliance program aligned with internal policies and external regulations
• Lead integration across frameworks including SOX ITGC, PCI DSS, and SWIFT CSP
• Act as the subject matter expert for PCI DSS, with future expansion to other standards
• Define governance models, policies, and compliance standards

Governance & Oversight

• Develop dashboards, KPIs, and reporting to monitor global compliance status
• Drive accountability across business units and brands
• Coordinate evidence collection, testing, and remediation for audits and renewals

PCI DSS Governance (Immediate Focus)

• Manage annual PCI DSS assessments, SAQs, and ROC processes with external QSAs
• Support regional teams in preparation, evidence gathering, and remediation
• Ensure consistent application of PCI DSS across all geographies

Risk Management & Remediation

• Identify compliance risks and gaps; propose and drive mitigation plans
• Collaborate with IT, infrastructure, and business teams to implement controls
• Escalate critical issues with actionable recommendations

Awareness & Training

• Deliver targeted training and awareness sessions (PCI DSS, ISO, GDPR, etc.)
• Foster a culture of accountability and compliance across the organization

Stakeholder Collaboration

• Serve as the liaison between Group Cybersecurity, regional IT, business leaders, and external assessors
• Coordinate with acquirers, payment providers, and regulators
• Align with Internal Audit, Risk Management, and cross-functional teams

What you need to succeed:

• 7+ years of experience in information security, IT compliance, or risk management, including 3+ years of hands‑on PCI DSS compliance in large or complex environments
• Deep knowledge of cybersecurity compliance frameworks (especially PCI DSS) with the ability to expand into ISO 27001, SOX, GDPR, and SEC
• Strong understanding of IT security controls, payment systems, and retail/eCommerce transaction flows
• Proven track record leading compliance programs across federated, multinational organizations
• Experience managing external audits, QSAs, and regulatory assessments
• Familiarity with GRC frameworks and tools
• Preferred certifications: PCIP or ISA, CISSP, CISM, or CISA
• Bachelor's degree in Information Security, Computer Science, Risk Management, or related field (Master's preferred)
• Excellent program/project management and stakeholder engagement skills
• Fluent in English; additional languages are a plus
• Self‑directed and innovative mindset
• Eagerness to take ownership of projects and responsibilities, driving personal and professional growth
• Experience working in diverse, international settings or with global teams
• Excellent communication skills for clearly conveying ideas and collaborating with various stakeholders

What's in it for you:

With us, you'll inspire others to embrace the joy of sports while connecting with a global network of passionate individuals. We foster a dynamic and supportive culture that empowers you to innovate, grow professionally, and pursue your passion for both sports and the outdoors.

• Meaningful projects: Contribute to interesting projects with dedicated teams, making a real impact and driving positive change.
• Work‑life balance: Enjoy flexible working hours and the option for mobile working or a home office setup.
• Active lifestyle: Embrace a healthy lifestyle with a wide range of sports opportunities and access to our on‑site gym.
• Financial…