GRC Analyst (m/f/x)

At HelloFresh, we want to change the way people eat forever by offering our customers high quality food and recipes for different meal occasions. Over the past 10 years, we've seen this mission spread around the world and beyond our wildest dreams. Now, we are a global food solutions group and the world's leading meal kit company, active in 17 countries across 3 continents. So, how did we do it? Our weekly boxes full of exciting recipes and fresh ingredients have blossomed into a community of customers looking for delicious, healthy and sustainable options. The HelloFresh Group now includes our core brand, HelloFresh, as well as: GreenChef, EveryPlate, Chef's Plate, Factor, and Youfoodz.The role

Were looking for a new teammate to join us on the journey of keeping HelloFresh a trusted name - someone with a passion for security, compliance and appetite for new challenges. A GRC Analyst works in a variety of ways to plan, design, implement and maintain Governance, Risk and Compliance initiatives and the elements supporting those.

You will be part of the squad responsible for creating, maintaining and improving HelloFreshs security risk management program and remediation activities; information security and data privacy related processes, policies, and guidelines; supporting compliance and certification related activities; and driving security awareness and education.
What youll do


Assist in the establishment and maintenance of the security risk management program

Cooperate with various teams to identify, document, assess and remediate security risks

Support the creation and update of security policies to establish and maintain a strong framework of security controls

Develop comprehensive and accurate reports and presentations for both technical and executive audiences

Effectively communicate findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel

Use formal project management skills in planning, tracking, and reporting to close the remediation loop

Conduct third-party vendor security reviews and assessments regarding their security and data privacy status

Facilitate and improve the security awareness program of the company

What youll bring


1-3 years experience in the fields of information security / Governance, Risk and Compliance (GRC) / IT auditing

Experience in working with compliance programs (NIST, ISO 27001 / 27007, PCI DSS), standards, and regulations

Thorough understanding of data privacy regulations (GDPR, CCPA)

Ability to map and interpret security guidelines/controls to the actual implementation of systems, from various Security Frameworks

Experience with the creation and maintenance of information security policies and guidelines

Experience with developing and executing security awareness programs and trainings

Excellent interpersonal and communication skills ( in English)

What we offer





Comprehensive relocation assistance to move to Berlin plus visa application support

Healthy discount on weekly HelloFresh boxes

Annual learning and development budget to attend conferences or purchase educational resources plus access to the HelloFresh Academy

Subsidised childcare with a professional nannying agency

Free access to Headspace, biweekly in-house yoga classes (remote since March 2020)

A diverse and vibrant international environment of 70+ different nationalities

Additional perks include: Free crash course in German, compensation for advanced external German classes, discounts for our neighbouring gym & Urban Sports Club, summer & winter parties, discount on our HelloFresh GO vending machines

The chance to have a significant impact on one of the fastest-growing technology companies in Europe in an exciting growth phase



Are you up for the challenge?

Please submit your complete application below including your salary expectations and earliest starting date.

After submitting an application our team will review this and get back to you within 5 business days.

For insight into our interview process take a look at our recent posthere.About HelloFresh

We believe that sharing a meal brings people of all identities, backgrounds, and cultures together. We are committed to celebrating all dimensions of diversity in the workplace equally and ensuring that everyone feels a sense of inclusion and belonging. We also aim to extend this commitment to the partners we work with and the communities we serve. We are constantly listening, learning, and evolving to deliver on these principles. We are proud of our collaborative culture. Our diverse employee population enables us to connect with our customers and turn their feedback into meaningful action - from developing new recipes to constantly improving our process of getting dinner to our customers homes. Our culture attracts top talent with shared values and forms the foundation for a great place to work!

At HelloFresh, we embrace diversity and inclusion. We are an equal opportunity employer and do not discriminate on the basis of an individual's race, national origin, color, gender, gender identity, gender expression, sexual orientation, religion, age, disability, marital status or any other protected characteristic under applicable law, whether actual or perceived. As part of the Companys commitment to equal employment opportunity, we provide reasonable accommodations, up to the point of undue hardship, to candidates at any stage, including to individuals with disabilities.

We want to adapt our processes and create a safe space that welcomes everyone so please let us know how we can accommodate our process. In case you have any accessibility requirements you can share that with us in the application form.

To learn more about what it's like working inside HelloFresh, follow us onInstagramandLinkedIn