Information Security Risk Management(m/f/d)

Job description

Allianz Services is proud to serve and be part of Allianz Group, one of the world's leading insurers and asset managers. Our global footprint, with more than 7,300 employees located across ten countries and four continents, enables us to unlock value for our partners across the insurance value chain and deliver superior client experience within Allianz Group. At Allianz Services, we have a strong specialization in core insurance operations, shared services, business analytics, engineering, and management consulting. Our people and our trusted relationships with partners are what matter most. These are rooted in our values of compassion, integrity, and expertise and we strive to continuously evolve, improve, and deliver excellence while contributing successfully to the transformation of Allianz. Caring actively for the environment, for people, and for our customers is what makes us a great place to work and together we are shaping a better and more caring tomorrow.
Allianz Services is a company which belongs to the legal entity, Allianz Technology SE.   

The Allianz Group Information Security Function is responsible for ensuring that Information Security and Cyber Risks, which could potentially impact the successful delivery of Allianz business objectives, are identified and appropriately managed. It ensures that Allianz  is adequately protected in accordance with legal and regulatory requirements. Additionally, the Allianz Group Information Security Function maintains the Allianz Information Security strategy and oversees Global Identity and Access Management Governance across the Allianz Group. 

The main objectives are to:

Develop an Information Security Risk Management culture within Allianz. This is achieved by maintaining a robust Information Security Risk management framework, providing business visibility into these risks and related threats, and ensuring that comprehensive plans are in place to address them.

Enhance Information Security Capabilities within Allianz and with key external partners and institutions. This includes supporting and development of strong Information Security practices and collaborations.

Support key global Information Security initiatives and solutions. These initiatives aim to strengthen Allianz’ cyber resilience, ensure regulatory compliance, and minimize risks of data leakage and cyber attacks.

What you do

• Drive the continuous and proactive monitoring and reporting of Key Risk Indicators (KRIs) and control deficiencies related to Information Security (IS) and Cyber Risk.
• Provide global expert support to Operating Entities (OE) in executing various risk management activities, identifying control deficiencies and defining actionable mitigations to improve the control environment.
• Collaborate closely with OEs and Group Functions to ensure effective management of Third-Party Cyber Risk and implementation of Data Leakage Prevention controls in alignment with Group Policies.
• Facilitate OE user-group discussions, promoting the exchange of best practices, providing updates, and driving the continuous improvement of Information Security Risk Management practices.

What you bring

• Practical experience and certification (e.g. CISM, ISO27001, CRISC) in implementing Information Security governance and management systems.
• Proven track record in working within large and diverse international organizations.
• Fluent in English; proficiency in a second major language (e.g. German, Italian, Spanish) is a plus.
• Proven track record in functional steering and monitoring within large multinational environments, with experience leading without authority.
• Experience in Information Security Risk Management, Operational Risk Management, Enterprise Risk Management and the use of Governance, Risk and Compliance (GRC) tools
• Background in project management, particularly with a focus on Information Security, is a plus.
• Strong analytical skills complemented by excellent soft skills as well as the ability to communicate complex topics clearly and concisely to key (senior) stakeholder
• We highly welcome candidates with a genuine interest and affinity for Information Technology (IT) and Generative Artificial Intelligence (GenAI), as these attributes are considered valuable assets to our team.

What we offer

• We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad.
• We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location).
• From career development and digital learning programs to international career mobility, we offer lifelong learning for our employees worldwide and an environment where innovation, delivery and empowerment are fostered.
• Flexible working, health and wellbeing offers (including healthcare and parental leave benefits) support to balance family and career and help our people return from career breaks with experience that nothing else can teach.