For our client, a global player in the insurance industry headquartered in Munich, we are searching for a motivated (Senior) Specialist (m/f/d) IT-Risk Management with the ability to work independently as well as in a team environment.
(Senior) Specialist (m/f/d) IT-Risk Management
Key Responsibilities:
You will be responsible for further developing and ensuring 2nd line risk monitoring for IT risk management
You are the „voice“ of the OEs in the development of new risk steering concepts to ensure efficient and targeted governance structures
You provide oversight on processes and follow-up measures to assess the functional effectiveness of Local and Group IT risks, and if needed, participate/run OE peer-reviews
You are in charge of monitoring compliance with the Group's risk guidelines and standards (e.g., integrated risk and control system; IRCS)
You collaborate with 1st line (GTA, GIS, GP&R and AZ Technology) in the identification of key and emerging IT risks, including appropriate measures in line with the risk appetite of the Group
You identify best practices and assist in the definition and implementation of IT risk development plans
You will perform (2nd line) activities related to operational IT risk management for the company (e.g., conduct annual RCA and scenario analysis workshops and top risk assessments; prepare GFRC presentations / qualitative risk reports / internal control reports; report IT losses in ORGS)
You interact with Local and Group business functions to ensure proper consideration and awareness of risk aspects
Key Qualifications:
You have successfully passed your studies in (preferably) Computer Science, Physics, Mathematics, Business Information System or related fields
You have multiple years (minimum 10+ years) of relevant professional experience in information technology, with deep understanding of information security, IT architecture, IT operation, including best practices (ISO27XXX, ITIL, COBIT, ISAE/SOC, etc.)
Professional certifications in IT Risk Management, Information Security and/or IT Audit (CRISC, CISM, CISA, ISO 27xxx, ISO 31000), Project Management (PMI, PMP) – Process Management (e.g. ITIL) is a plus
You have profound knowledge in the field of insurance/reinsurance core value chain processes
Ideally, you have the ability to develop and implement processes, standards, and system functionality for IT Risk Management, OPEX Black Belt, Six Sigma
You are always willing to learn and to constantly improve your skills
You have accurate, strong analytical skills and an eye for details
You speak German and English fluently on a business level
Benefits:
An international successful company in the financial services sector
Very strong and recognized brand appearance
Career development programs
Flexible working arrangements, the option of Home-Office and 30 days of vacation
Multiple social company benefits
A very pleasant working environment in dynamic and intercultural teams
An excellent canteen
