Four people in business attire sit around a wooden table discussing strategies. Drinks, a tablet, bottles, and a plant are on the table. The modern office setting hints at a Consulting Expert für KRITIS leading the meeting, viewed from above.

Consulting Expert for KRITIS and NIS2 (m/f/d)

To strengthen our team, we are looking for a highly motivated Consulting Expert for KRITIS (critical infrastructure) and NIS2 who enjoys delivering demanding projects in a regulated environment.

3-core GmbH is a modern and innovative management consultancy specialising in Corporate Resilience Management. We advise clients worldwide in Business Continuity Management, Emergency and Crisis Management, and Security Management, and we support organisations in implementing regulatory KRITIS requirements and the NIS2 Directive.

Your Responsibilities as a Consulting Expert for KRITIS and NIS2

With your specialist expertise, you advise our clients either as part of a team or independently as a Consulting Expert for KRITIS and NIS2. You take a structured approach, simplify complexity, and develop practical, audit-ready solutions. You coordinate projects, produce analyses and decision papers, and present results in a way that suits the target audience. Your key responsibilities include:

  • Advising on KRITIS requirements and NIS2 compliance (interpretation, implementation, evidence/assurance, certifications)
  • Conducting gap analyses and maturity assessments, and developing roadmaps and action plans
  • Building and further developing ISMS structures (e.g. aligned with ISO/IEC 27001), including policies, processes and documentation
  • Supporting risk assessments, protection needs assessments (Schutzbedarfsanalysen) and prioritising appropriate security measures
  • Preparing and supporting audits, assessments and certifications, including management-ready reporting
  • Facilitating workshops with IT, security, business units and senior management
  • Owning client subject-matter support and ensuring projects are delivered on time and to a high quality standard

You strengthen our team with your experience and qualifications

  • Completed degree (e.g. (Business) Informatics/Computer Science, IT Security, Engineering, or similar) or an equivalent qualification gained through relevant professional experience
  • Experience in information security and/or security consulting, ideally within a regulated environment
  • Very strong understanding of KRITIS (critical infrastructure) and/or NIS2, including translating requirements into practical controls, workable processes, and auditable evidence/certification
  • Experience with standards and frameworks such as ISO/IEC 27001 or BSI IT-Grundschutz
  • Efficient, structured, proactive, and highly detail-oriented working style
  • Very good MS Office skills
  • Very good German and English skills (C1 level)
  • Willingness to travel approx. 20% (national/international)
  • Nice to have: experience in BCM / emergency and crisis management in a KRITIS context

Our Benefits

  • Structured onboarding and continuous mentoring (personal and professional)
  • Monthly team events
  • Modern workplace and flexible working hours
  • Hybrid working: one fixed home office day per week, with additional days by agreement
  • Permanent employment contract
  • Training and professional development tailored to your goals
  • Short decision-making paths, plenty of scope to shape things, and a start-up mindset
  • Challenging client projects, true teamwork, and regular customer contact
  • Competitive salary, 30 days’ annual leave
  • Healthy snacks and “brain food” in our team kitchen, plus unlimited coffee

  • Deutschlandticket (public transport job ticket)

Interested? Send us your application for the Consulting Expert for KRITIS role

We look forward to receiving your application for the Consulting Expert for KRITIS and NIS2 role. Please email us your CV, certificates/references, and anything else that demonstrates your expertise and motivation to [email protected]