Information Security Risk Management
BARCELONA, B, ES, 08005
The Allianz Group Information Security Function is responsible for ensuring that Information Security and Cyber Risks, which could potentially impact the successful delivery of Allianz business objectives, are identified and appropriately managed. It ensures that Allianz is adequately protected in accordance with legal and regulatory requirements. Additionally, the Allianz Group Information Security Function maintains the Allianz Information Security strategy and oversees Global Identity and Access Management Governance across the Allianz Group.
The main objectives are:
- Develop an Information Security Risk Management culture within Allianz. This is achieved by maintaining a robust Information Security Risk management framework, providing business visibility into these risks and related threats, and ensuring that comprehensive plans are in place to address them.
- Enhance Information Security Capabilities within Allianz and with key external partners and institutions. This includes supporting and development of stronf Information Security practices and collaborations.
- Support key global Information Security initiatives and solutions. These initiatives aim to strengthen Allianz’ cyber resilience, ensure regulatory compliance, and minimize risks of data leackage and cyber attacks.
What you can find at Allianz Technology:
- Work Life - Balance: We offer flexible working hours so you can start your working day according to your needs. In addition, during the summer and every Friday of the year, you have the option of intensive working hours, which will allow you to enjoy more free time for yourself.
- International and Multicultural Environment: We value the diversity and richness that comes from working in an international and multicultural environment. With more than 52 different nationalities represented in our company, we offer our employees the opportunity to collaborate with people from all over the world, enriching the work environment and providing the opportunity to learn and grow in a truly global setting. This diversity allows us to have a broader perspective, foster creativity and innovation, and promote an inclusive work environment where every voice is heard and valued.
- Professional Growth Opportunities: We are committed to the professional development of our employees and provide numerous opportunities for growth within the company. We value internal talent and promote internal advancement, offering training programs, mentoring, and skills development that allow our employees to advance in their careers.
- Compensation and Benefits Package: It includes a company bonus plan, pension, employee stock program, and multiple employee discounts (details vary by location).
What will make you succeed in this position?
- Practical experience and certification (e.g. CISM, ISO27001, CRISC) in implementing Information Security governance and management systems.
- Proven track record in working within large and diverse international organizations.
- Fluent in English; proficiency in a second major langugage (e.g. German, Italian, Spanish) is a plus.
- Proven track record in functional steering and monitoring within large multinational environments, with experience leading without authority.
- Experience in Information Security Risk Management, Operational Risk Management, Enterprise Risk Management and the use of Governance, Risk and Compliance (GRC) tools
- Background in project managment, partcularly with a focus on Information Security, is a plus.
- Strong analytical skills complemented by excellent soft skills.
- Ability to communicate complex topics clearly and concisely to key (senior) stakeholders.
Your mission in the role will be:
- Drive the continuous and proactive monitoring and reporting of Key Risk Indicators (KRIs) and control deficiencies related to Information Security (IS) and Cyber Risk.
- Provide global expert support to Operating Entities (OE) in executing various risk management activities, identifying control deficiencies and defining actionable mitigations to improve the control environment.
- Collaborate closely with OEs and Group Functions to ensure effective management of Third-Party Cyber Risk and implementation of Data Leakage Prevention controls in alignment with Group Policies.
- Facilitate OE user-group discussions, promoting the exchange of best practices, providing updates, and driving the continuous improvement of Information Security Risk Management practices.
About Allianz Technology
Allianz Technology is the global IT service provider for Allianz and delivers IT solutions that drive the digitalization of the Group. With more than 12,000 employees located in 51 countries around the globe, Allianz Technology works together with other Allianz entities in pioneering the digitalization of the financial services industry.
We oversee the full digitalization spectrum – from one of the industry’s largest IT infrastructure projects that includes data centers, networking and security, to application platforms that span from workplace services to digital interaction. In short, we deliver full-scale, end-to-end IT solutions for Allianz in the digital age.
D&I statement
Allianz Technology is proud to be an equal opportunity employer encouraging diversity in the working environment. We are interested in your strengths and experience. We welcome all applications from all people regardless of gender identity and/or expression, sexual orientation, ethnicity and cultural background, age, nationality, religion, disability, or philosophy of life.
Join us. Let´s care for tomorrow.
You. IT
56386 | Ingeniería informática y tecnológica | Profesional / Senior | Non-Executive | Allianz Technology | Jornada completa | Indefinido