Information Security Officer & Risk Manager

About the Information Security Officer & Risk Manager Role

This job is with Allianz Commercial, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community.

This role is situated within the CTO2 AzP Service Governance-Security & AZ Trade department, specifically for the AzP Security Assurance team.

What You'll Do

• Serve as a local contact person for information security-related matters, interfacing with local management, IT, risk management, audit, and business.
• Evaluate compliance against IT security policies, functional rules, and controls, and perform control testing to assess design and effectiveness according to Group standards.
• Identify security risks and exposures, develop mitigation strategies to prevent future incidents, and improve security.
• Ensure control assurance activities are delivered accurately and timely, while supporting the business on information security risks and controls, including handling sensitive data.
• Advise and support projects on IT security, serving as a general point of contact and report.
• Define and implement performance metrics to evaluate the effectiveness of information security programs, and lead Digital Operational Resilience Act's risk-related oversight activities for validation and compliance.
• Monitor and maintain system confidentiality, integrity, and availability, and manage information security crises/incidents.

What You'll Bring

• Higher education degree in IT or comparable technical education with project management and reporting experience; ability to operate in a deadline-oriented environment.
• Recognized Information Security Certifications such as CISSP, CISM, CRISC, or ISO27001 Lead Auditor preferred.
• Excellent verbal and written communication skills; experience presenting across various levels within the business up to senior leadership.
• Proven analytical, audit, and investigative skills; strong judgment and reasoning ability.
• Broad knowledge on relevant security standards as well as data privacy and audit standards as well as technical knowledge about security relevant systems (e.g. Archer, Qualys, WIZ,...).
• Minimum of 5 years of Information Security experience related to risk management, controls assurance, and compliance programs; experience with internal controls, risk assessments, business processes, and internal IT control testing or operational auditing.
• Very good knowledge of Allianz as well as AzP business security requirements and their implementation.
• Basic knowledge of AI technologies, principles and their practical use.

What Allianz Technology Offers

• We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad.
• We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location).
• From career development and digital learning programs to international career mobility, we offer lifelong learning for our employees worldwide and an environment where innovation, delivery and empowerment are fostered.
• Flexible working, health and wellbeing offers (including healthcare and parental leave benefits) support to balance family and career and help our people return from career breaks with experience that nothing else can teach.

About Allianz Technology

With its headquarters in Munich, Germany, Allianz Technology is Allianz's global IT service provider and delivers IT solutions that drive the group's digitalization. With more than 11,000 employees in over 20 countries around the world, Allianz Technology is tasked to run, optimize, transform and innovate the infrastructure, applications and services together with Allianz companies to co-create the best customer experience.

We service the entire spectrum of digitalization - from one of the industry's largest IT infrastructure projects that spans data centres, networks and security, to application platforms ranging from workplace services to digital interaction.

In short: We deliver comprehensive end-to-end IT solutions for Allianz in the digital age. We are the backbone of Allianz.

Commitment to Integrity, Fairness & Inclusion

Allianz Group is one of the most trusted insurance and asset management companies in the world. Caring for our employees, their ambitions, dreams and challenges, is what makes us a unique employer. Together we can build an environment where everyone feels empowered and has the confidence to explore, to grow and to shape a better future for our customers and the world around us.

We at Allianz believe in a strong inclusive culture that encourages people to speak their minds, get involved and question the status quo. We are proud to be an equal opportunity employer and encourage you to bring your whole self to work, no matter where you are from, what you look like, who you love, or what you believe in. We therefore welcome applications regardless of race, ethnicity or cultural background, age, gender, nationality, religion, social class, disability, sexual orientation, or any other characteristics protected under applicable local laws and regulations.

Key skills/competency

• Information Security
• Risk Management
• Compliance
• Control Testing
• IT Security Policies
• Incident Management
• Data Privacy
• Audit Standards
• Project Support
• AI Technologies