Cybersecurity Policies Expert (part-time)

10+ years' experience in cybersecurity, information security, or cyber risk leadership roles.Min. 5 years of experience in security auditing and compliance.Proven experience as a CISO, vCISO, Head of Security, Security Governance Lead, or Senior Cybersecurity Consultant.Strong knowledge of ISO 27001, NIS2, GDPR, and security governance frameworks.Experience advising executive leadership teams and board-level stakeholders.Ability to communicate technical cybersecurity risks in clear business terms.Hands-on experience conducting risk assessments and managing enterprise risk registers.Strong mentoring, coaching, stakeholder management, and influencing skills.Excellent communication and presentation abilities.Desirable Certifications: CISSP, CISM, CRISC, ISO 27001 Lead Auditor, ISO 27001 Lead Implementer. Sybilla Technologies designs, builds, and operates robotic optical observatories for monitoring objects in space. We specialize in end-to-end systems and software for automated data acquisition, analysis, and scheduling across networks of sensors. Our work spans Space Situational Awareness, Space Surveillance & Tracking, Space Traffic Management, as well as stellar and planetary research, education, and commercial on-demand observations. By combining cutting-edge technology with advanced software, we enable faster, smarter, and more reliable insights from space. We are seeking a Cybersecurity Policies Expert (part-time) to join Sybilla Technologies in a strategic advisory role, providing guidance on cybersecurity governance, risk, compliance, and security maturity, while supporting leadership with expert insight, oversight, and mentoring to embed cybersecurity and privacy across the business and drive sustainable growth. ,[Serve as Sybilla Technologies' trusted cybersecurity advisor, providing independent guidance on cybersecurity, information security, privacy, and cyber risk matters. , Advise executive leadership and the Management Board on security strategy, governance, risks, and regulatory obligations. , Preparing the organisation for ISO 27001 accreditation. , Maintain oversight of the organisation's cybersecurity governance framework and long-term security roadmap. , Lead cyber risk management activities, including risk assessments, risk register oversight, and risk mitigation recommendations. , Provide independent challenge, assurance, and expert review of security controls, policies, and strategic initiatives. , Guide compliance efforts relating to ISO 27001, GDPR, NIS2, and customer security requirements. , Support security reviews, customer due diligence activities, and third-party risk management. , Mentor and coach internal teams, helping develop security awareness, capability, and culture across the organisation. , Advise on incident preparedness, response planning, and lessons learned from security events. , Drive continuous improvement of security maturity, benchmarking capabilities against industry best practices and supporting sustainable business growth. , Serving as a Security Officer in projects executed by the organization. ] Requirements: Cybersecurity, Security, ISO, GDPR, Stakeholder management, CISSP, CISM, CRISC, ISO27001 Additionally: Flat structure, Small teams, International projects, Training budget, Private healthcare, Sport subscription, Startup atmosphere, No dress code.