Bern
Governance, Risk & Compliance Manager
- 03 July 2026
- 100%
- Bern
About the job
- Central point of contact for all GRC topics at the interface between the Group, RUAG Real Estate and external providers
- Responsible for the specialist roles of information security, data protection, trade compliance, business continuity management (BCM) and risk
- Responsible for the operation and further development of the information security management system (ISMS) as well as compliance with basic protection and monitoring of internal and external providers regarding contractual SLAs and compliance requirements
- Coordination of GRC initiatives as project manager in coordination with the Group to ensure compliance with Group requirements and monitoring of regulatory developments as well as responsibility for reviewing and drafting local directives and supporting the operation of a documentation system
- Management of the entire risk process, including proactive identification and assessment of business and IT risks, conducting regular risk reviews and maintaining the risk system of RUAG Real Estate
- Creation of target group-specific status reports and dashboards for the divisional management as well as conducting regular awareness campaigns for employees
- Preparation of internal and external audits and support during their execution as well as ensuring seamless documentation for compliance evidence
- Completed studies in business informatics, business administration, law or a comparable field
- Several years of professional experience in documenting processes or controls as well as in participating in or leading projects, ideally in a regulatory environment
- Sound understanding of IT security and data protection, preferably with knowledge of the revised Data Protection Act (revDSG)
- Experience in risk management as well as in creating and further developing policies and frameworks according to ISO 27001 or NIST
- Good understanding of how service level agreements (SLAs) work
- Communicative personality with high reliability and confident appearance towards internal and external stakeholders
- Quick comprehension of complex Group requirements as well as an independent, structured and precise working style
- High digital competence and affinity for digital tools, GRC software solutions and the MS Office suite, especially Excel and PowerPoint
- Very good German and English skills, both spoken and written
RUAG Real Estate AG is a real estate competence centre and a subsidiary of RUAG MRO Holding AG. We plan and implement customised space, construction and service solutions within our own real estate portfolio at central locations in Switzerland. Our focus is on the duality of investment and operational properties, especially for special objects in the fields of aviation, defence technologies and highly secure infrastructures. In addition, our space solutions and operator services create optimal conditions for the business success of our customers. With a holistic approach along the entire real estate lifecycle, digital solutions and long-term customer relationships, we stand for the highest professionalism and sustainable value creation.
- Completed studies in business informatics, business administration, law or a comparable field
- Several years of professional experience in documenting processes or controls as well as in participating in or leading projects, ideally in a regulatory environment
- Sound understanding of IT security and data protection, preferably with knowledge of the revised Data Protection Act (revDSG)
- Experience in risk management as well as in creating and further developing policies and frameworks according to ISO 27001 or NIST
- Good understanding of how service level agreements (SLAs) work
- Communicative personality with high reliability and confident appearance towards internal and external stakeholders
- Quick comprehension of complex Group requirements as well as an independent, structured and precise working style
- High digital competence and affinity for digital tools, GRC software solutions and the MS Office suite, especially Excel and PowerPoint
- Very good German and English skills, both spoken and written
- Central point of contact for all GRC topics at the interface between the Group, RUAG Real Estate and external providers
- Responsible for the specialist roles of information security, data protection, trade compliance, business continuity management (BCM) and risk
- Responsible for the operation and further development of the information security management system (ISMS) as well as compliance with basic protection and monitoring of internal and external providers regarding contractual SLAs and compliance requirements
- Coordination of GRC initiatives as project manager in coordination with the Group to ensure compliance with Group requirements and monitoring of regulatory developments as well as responsibility for reviewing and drafting local directives and supporting the operation of a documentation system
- Management of the entire risk process, including proactive identification and assessment of business and IT risks, conducting regular risk reviews and maintaining the risk system of RUAG Real Estate
- Creation of target group-specific status reports and dashboards for the divisional management as well as conducting regular awareness campaigns for employees
- Preparation of internal and external audits and support during their execution as well as ensuring seamless documentation for compliance evidence