LIEBHERR-INTERNATIONAL AG

Head of Information Security Governance, Risk and Compliance

📍 1630 Bulle

Role and responsibilities

Manage and lead GRC Teams. Develop and implement the GRC strategy and framework. Oversees information security risk assessments and identify potential threats and vulnerabilities. Covers GRC in scope of IT, OT, and Product Security in collaboration with stakeholders. Develop and enforce policies and procedures to manage cyber risks. Monitor and report on compliance with regulations and standards on a strategic level. Manage Awareness and Training Programs. Collaborate with business units to ensure compliance. Drive innovation in how GRC is delivered by embedding AI and intelligent automation into core GRC processes. Contribute to the AI governance framework.

Team / description

Qualifications and Skills

  • Bachelor’s/Master’s in Cybersecurity, Computer Science, cybersecurity Risk Management, or related field.

  • 5+ years in GRC roles and 3+ years in leadership is preferred.

  • Following certificates are preferred; CISSP or CISM, ISO 27001 Lead Auditor/Implementer, ITIL or COBIT certifications.

  • English is a Must, German and French are a plus.

  • Strong understanding of GRC frameworks and methodologies

  • Information Security Policy Management

  • Knowledge of relevant regulations and standards

  • Information Security Risk assessment and management skills

  • Practical understanding of how AI (generative and agentic AI) can be applied to strengthen and automate GRC, together with familiarity with AI governance and AI risk frameworks.

  • A forward-looking, innovation-oriented mindset, with proven experience of modernizing and improving processes.

  • Excellent communication and presentation skill.

  • Readiness for global travel