Information Security Risk Management
Barcelona, SPAIN
Job description
About the Job
The Allianz Group Information Security Function is responsible for ensuring that Information Security and Cyber Risks, which could potentially impact the successful delivery of Allianz business objectives, are identified and appropriately managed. It ensures that Allianz is adequately protected in accordance with legal and regulatory requirements. Additionally, the Allianz Group Information Security Function maintains the Allianz Information Security strategy and oversees Global Identity and Access Management Governance across the Allianz Group.
The main objectives are to:
Develop an Information Security Risk Management culture within Allianz. This is achieved by maintaining a robust Information Security Risk management framework, providing business visibility into these risks and related threats, and ensuring that comprehensive plans are in place to address them.
Enhance Information Security Capabilities within Allianz and with key external partners and institutions. This includes supporting and development of strong Information Security practices and collaborations.
Support key global Information Security initiatives and solutions. These initiatives aim to strengthen Allianz’ cyber resilience, ensure regulatory compliance, and minimize risks of data leakage and cyber attacks.
What you do
· Drive the continuous and proactive monitoring and reporting of Key Risk Indicators (KRIs) and control deficiencies related to Information Security (IS) and Cyber Risk.
· Provide global expert support to Operating Entities (OE) in executing various risk management activities, identifying control deficiencies and defining actionable mitigations to improve the control environment.
· Collaborate closely with OEs and Group Functions to ensure effective management of Third-Party Cyber Risk and implementation of Data Leakage Prevention controls in alignment with Group Policies.
· Facilitate OE user-group discussions, promoting the exchange of best practices, providing updates, and driving the continuous improvement of Information Security Risk Management practices.
What you bring
· Practical experience and certification (e.g. CISM, ISO27001, CRISC) in implementing Information Security governance and management systems.
· Proven track record in working within large and diverse international organizations.
· Fluent in English; proficiency in a second major language (e.g. German, Italian, Spanish) is a plus.
· Proven track record in functional steering and monitoring within large multinational environments, with experience leading without authority.
· Experience in Information Security Risk Management, Operational Risk Management, Enterprise Risk Management and the use of Governance, Risk and Compliance (GRC) tools
· Background in project management, particularly with a focus on Information Security, is a plus.
· Strong analytical skills complemented by excellent soft skills as well as the ability to communicate complex topics clearly and concisely to key (senior) stakeholders.
What we offer
· We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad.
· We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location).
· From career development and digital learning programs to international career mobility, we offer lifelong learning for our employees worldwide and an environment where innovation, delivery and empowerment are fostered.
· Flexible working, health and wellbeing offers (including healthcare and parental leave benefits) support to balance family and career and help our people return from career breaks with experience that nothing else can teach.
About Allianz Technology
With its headquarters in Munich, Germany, Allianz Technology is Allianz's global IT service provider and delivers IT solutions that drive the group's digitalization. With more than 11,000 employees in over 20 countries around the world, Allianz Technology is tasked to run, optimize, transform, and innovate the infrastructure, applications, and services together with Allianz companies to co-create the best customer experience.
We service the entire spectrum of digitalization – from one of the industry's largest IT infrastructure projects that spans data centres, networks, and security, to application platforms ranging from workplace services to digital interaction.
In short: We deliver comprehensive end-to-end IT solutions for Allianz in the digital age. We are the backbone of Allianz.
Find us at: www.linkedin.com/company/allianz-technology .
D&I statement
Allianz Technology is proud to be an equal opportunity employer that embraces diversity and commits itself to creating an inclusive work environment for all. We welcome all people, regardless of e.g., gender identity and/or expression, sexual orientation, race or ethnicity, age, nationality, religion, disability, or philosophy of life. After all, our greatest strength as a company is rooted in the diversity of skills, experiences, and backgrounds that our employees bring.
Join us. Let´s care for tomorrow.
You. IT.
To Recruitment Agencies:
Allianz Technology has an in-house recruitment team that sources great candidates directly. Therefore, Allianz Technology does not accept unsolicited resumes from agencies or search firm recruiters.
When we do work with recruitment agencies, that engagement is formalized by a contract. Fees will only be paid when there is a contract in place. Without a contract in place, we will not accept invoices on unsolicited resumes, even if the candidate was ultimately employed by Allianz.
56386 | Ingeniería informática y tecnológica | Profesional / Senior | Non-Executive | Allianz Technology | Jornada completa | Indefinido