Job Purpose

The Information Security Expert in the Information Security Office of Allianz Technology S.p.A. contributes to the achievement of the goals of the department by supporting the local ISO Manager in the development and implementation of the cyber security strategy.
The Information Security Expert interacts with all the other relevant stakeholders (e.g. software development teams, Infrastructure management Teams, Information Security Functions among client companies) to design safe Information Security policies and grant the correct implementation within the Company.
Activities comprehend, among others, gap analysis of security policies in place vs. target ones, support in the development of proposals for measures to close gaps to minimum requirements, tracking on measure closing process and continuous report of status, development of support material to ensure correct understanding and training of all relevant process contributors.

Key responsibilities

•    Supporting the LISO in regular activities and security operations oversight
•    Supporting the development teams in designing the architecture from security point of view, specifying the various parameters and defining the technical security requirements for integrating new systems or upgrading existing systems
•    Performing security risk identification and assessments phases supporting also the threat modeling to prioritize risks on IT assets
•    Ensuring the monitoring of the risks through GRC tools and performing control assessments against Allianz control framework.
•    Conducting third party security risk assessments
•    Supporting the annual assurance process for their area of responsibility and ensuring timely delivery of results
•    Helping information gathering during audits
•    Providing and maintaining Information Security Dashboards to the branches

Key requirements/skills/experience

•    Master’s Degree in IT Engineering, Computer Science or equivalent
•    Good experience in Information Security Governance (e.g. 5 years in the role)
•    Good knowledge in Enterprise Architecture, technology awareness (i.e. Cloud, AI...) 
•    Experienced in conducting security risk assessments and be familiar with threat modelling
•    Experienced in Security frameworks
•    Applying analytical thinking, methodological and conceptual as well as consulting, communication and collaboration skills with autonomy
•    Ability to work fully independent and solve complex problems or situations based on multiple sources of information
•    Penetration test and Technology experience would be a plus
•    Security certifications would be a plus
•    Fluent in English, working knowledge in Italian
 

Location: Milan, Trieste

43982 | IT & Tech Engineering | Professional | Allianz Technology | Full-Time | Permanent

Allianz Group is one of the most trusted insurance and asset management companies in the world. Caring for our employees, their ambitions, dreams and challenges, is what makes us a unique employer. Together we can build an environment where everyone feels empowered and has the confidence to explore, to grow and to shape a better future for our customers and the world around us. 
We at Allianz believe in a diverse and inclusive workforce and are proud to be an equal opportunity employer. We encourage you to bring your whole self to work, no matter where you are from, what you look like, who you love or what you believe in.
We therefore welcome applications regardless of ethnicity or cultural background, age, gender, nationality, religion, disability or sexual orientation.
Join us. Let's care for tomorrow.

Both genders may apply in accordance with the L. 903/77 (s.m.i).