security
Posted YesterdayCybersecurity GRC & AI Governance Expert
at SUSE
CzechiaRemote
Responsibilities
- Cybersecurity GRC Governance & Policies: Develop, maintain and support implementation of SUSE ISMS policies, procedures and standards, working with control owners and accountable functions to ensure
- Audit Facilitation: Coordinate and lead internal and external security audits.
- Security Awareness: Design and deliver security awareness initiatives to promote a culture of compliance.
Requirements
- By transforming community innovations into secure, sovereign and AI-ready solutions, SUSE empowers customers to escape vendor lock-in and regain control of their IT destiny.
- Through industry-leading Linux, Kubernetes, Edge and AI infrastructure solutions, SUSE delivers the flexibility to innovate everywhere—from the data center to multi-cloud and out to the edge.
- Only SUSE also manages many Linux and Kubernetes distributions.
- Cybersecurity GRC & AI Governance Expert Job Description Position Overview We are seeking a highly skilled Cybersecurity GRC & AI Governance Expert to join our fully remote Cybersecurity GRC team.
- In addition, this position acts as the subject matter expert for AI Governance, anchoring the organisation's AI governance capability within the GRC function and ensuring that internal AI management and product integrations comply with emerging global regulations.
- The ideal candidate for this role possesses a strong background in traditional security frameworks (ISO 27001, SOC 2) alongside a practical understanding of AI risk management (ISO 42001, EU AI Act). Key Responsibilities 1.
- Familiarity with Common Criteria certification concepts and assurance requirements, including EAL4+ or comparable certification expectations, is an advantage.
- GRC Engineering: Define and improve GRC and AI governance workflows, evidence models, dashboards and automation requirements.
- AI Management & Governance AI Management System: Operationalize and maintain SUSE’s AI Management System in alignment with the ISO/IEC 42001 Regulatory Compliance: In cooperation with the legal department, monitor and implement compliance of internal AI adoption, AI-enabled business processes, AI-enabled engineering workflows, AI-enabled or AI-related products with EU AI Act and other relevant global AI regulations.
- AI Risk & Threat Modelling Required Skills &