Permanent Placement


50 % Home-Office

(Senior) Specialist (m/f/d) IT-Risk Management

For our client, a global player in the insurance industry headquartered in Munich, we are searching for a motivated (Senior) Specialist (m/f/d) IT-Risk Management with the ability to work independently as well as in a team environment.


Key Responsibilities:

You will be responsible for further developing and ensuring 2nd line risk monitoring for IT risk management

You are the „voice“ of the OEs in the development of new risk steering concepts to ensure efficient and targeted governance structures

You provide oversight on processes and follow-up measures to assess the functional effectiveness of Local and Group IT risks, and if needed, participate/run OE peer-reviews

You are in charge of monitoring compliance with the Group's risk guidelines and standards (e.g., integrated risk and control system; IRCS)

You collaborate with 1st line (GTA, GIS, GP&R and AZ Technology) in the identification of key and emerging IT risks, including appropriate measures in line with the risk appetite of the Group

You identify best practices and assist in the definition and implementation of IT risk development plans

You will perform (2nd line) activities related to operational IT risk management for the company (e.g., conduct annual RCA and scenario analysis workshops and top risk assessments; prepare GFRC presentations / qualitative risk reports / internal control reports; report IT losses in ORGS)

You interact with Local and Group business functions to ensure proper consideration and awareness of risk aspects

Key Qualifications:

You have successfully passed your studies in (preferably) Computer Science, Physics, Mathematics, Business Information System or related fields

You have multiple years (minimum 10+ years) of relevant professional experience in information technology, with deep understanding of information security, IT architecture, IT operation, including best practices (ISO27XXX, ITIL, COBIT, ISAE/SOC, etc.)

Professional certifications in IT Risk Management, Information Security and/or IT Audit (CRISC, CISM, CISA, ISO 27xxx, ISO 31000), Project Management (PMI, PMP) – Process Management (e.g. ITIL) is a plus

You have profound knowledge in the field of insurance/reinsurance core value chain processes

Ideally, you have the ability to develop and implement processes, standards, and system functionality for IT Risk Management, OPEX Black Belt, Six Sigma

You are always willing to learn and to constantly improve your skills

You have accurate, strong analytical skills and an eye for details

You speak German and English fluently on a business level


An international successful company in the financial services sector

Very strong and recognized brand appearance 

Career development programs

Flexible working arrangements, the option of Home-Office and 30 days of vacation 

Multiple social company benefits

A very pleasant working environment in dynamic and intercultural teams 

An excellent canteen