Who are we?
Are you keen on driving innovation? Do you excel in a culture of diversity, collaboration and trust? Then let's care for tomorrow. At Allianz SE, you can count on having a voice, driving innovation and change and making an impact – for us, yourself and the world. For more about Allianz SE, click here.
Who will you be joining?
Allianz SE is the global headquarter of the Allianz Group. Our employees reflect the Group's geographic and functional diversity. Within Allianz SE, Group Risk is responsible for monitoring and reporting on the Group's overall risk profile supporting the management to foster Allianz's financial strength and to support value-focused company leadership.
The IT Risk Management team (ITRM) plays a critical role within Group Risk at Allianz SE, the global headquarters of the Allianz Group. As an expert team in information technologies and information security, ITRM is dedicated to ensuring excellence in non-financial risk management for the Allianz Group and its Operating Entities.
The primary focus of the ITRM team is to monitor and manage IT-related risks, thereby contributing to the overall resilience and security of Allianz's IT infrastructure. As the operative IT Risk team for Allianz SE, the team provides support to local Operating Entity teams in their independent risk oversight of all direct and operational activities of Allianz Holding.
In its capacity as a second line function on ICT Risk Management, the ITRM team is responsible for building and maintaining the control framework, overseeing threats and implemented controls, and reporting risks to the respective functions, including top management. By fulfilling these responsibilities, the team contributes to the overall goal of fostering Allianz's financial strength and supporting value-focused company leadership.
How can you make an impact?
You will:
- Develop and ensure 2nd Line risk oversight for IT Risk Management within AZSE Holding and AZ Group Operating Entities.
- Provide oversight on processes and follow-up measures to assess the functional effectiveness of Local and Group IT risks, including participation in OE peer-reviews when necessary.
- Act as the Technology risk Center of Competence (CoC) for the Group ITRM team, providing expert inputs to the Governance and strategy team, Data and reporting team, and identifying changes in the IT risk landscape.
- Act as the Technology risk Point of Contact (PoC) for Operating Entities (OEs), overseeing OE ITRM activities, ensuring adherence to Group standards, and challenging assumptions, methodologies, and end products of OEs’ technology risk relevant activities.
- Provide quarterly and ad-hoc Group reporting on the internal control system with a focus on IT processes, ensuring that identified operational losses resulting from IT risk events are reported in Group Risk databases.
- Monitor adherence to Group Risk policies and standards, ensuring transparent and effective identification of IT risks and respective remediation plans where needed, and providing input for the qualitative risk scoping of the Group Operational Risk Catalogue on a yearly basis.
- Collaborate with 1st Line (Local IT and IS functions and AZ Technology, as a shared service provider) in the identification of key and emerging IT risks, including appropriate measures in line with the risk appetite of the Group.
- Provide risk assessment support on large or complex IT projects (Group and Local), including feedback within H2 and to the Group IT Committee (ITCo).
- Create oversight, challenge, and advise AZ Group-wide projects with ITRM perspective, co-leading with the Operational Risk Management team to develop and maintain the Project Risk Assessment framework.
- Represent Group Risk in relevant Committee(s)/meetings (e.g., Group Information Security Working Group) and risk assessment workshops, analyzing risks, offering constructive challenge, and new ideas.
- Identify best practices and assist in the definition and implementation of IT risk development plans, analyzing new risk issues and ensuring efficient communication to and from OEs.
- Interact with Local and Group business functions to ensure proper consideration and awareness of risk aspects, and interact with OEs within the cluster, including regular/ad hoc touchpoints, tracking and supporting OEs in their ICT Risk Framework implementation, and supporting and chasing OEs 2nd Line ICT Risk Management function on oversight activities for identified high risks, incidents, and internal/external audit findings remediation.
- Support the Data and Reporting capability team internally and closely work with the 2nd Line ICT Risk Management Governance team.
What are you made of?
Minimum Qualifications:
- Bachelors degree in Mathematics, Statistics, Computer Science, Engineering, Social/Physical/Life Science, Business, or related field,
- +5 Years of Experience in IT and/or Information Security Areas,
- Good understanding on IT Governance and IT Risk Management Frameworks (e.g., COBIT2019, ISO27001, VAIT),
- Good knowledge about regulatory requirements of EU and/or Germany, e.g., DORA, GDPR, VAIT
- Fluent in English and German is plus.
- Previous experience in business related functions (i.e. Sales, Operations, Claims, Underwriting, Investment Management, Asset Management, Consulting, Product Development, Finance, Market Management, Digital / Tech etc.) is a plus.
Preferred Qualifications:
- CISSP, CISM, CISA, COBIT2019, Lead auditor ISO 27001
Do we have what you need?
- Flexible working arrangements
- Excellent career development opportunities
- Family friendly working environment
- Health and well-being offerings
- Company pension and health insurance
- Multinational, diverse and inclusive community
- Opportunity to affect our sustainability initiatives
And there is much more! Find out more here: Allianz SE Benefits
More information regarding our recruitment process: Allianz Careers
For more information contact Ms. Sabrina Diclemente: +49 89 3800 69518
People with disabilities:
We want to give all our candidates the best opportunity to succeed. If you need any adjustments to be made during the application and selection process, please email to RECRUITING-SERVICES@allianz.com
#StandwithUkraine
#LI-Hybrid
#LI-OA1
45654 | IT & Tech Engineering | Professional | Allianz SE | Full-Time | Permanent
To Recruitment Agencies:
Allianz SE has an in-house recruitment team that sources great candidates directly. Therefore, Allianz SE does not accept unsolicited resumes from agency or search firm recruiters.
When we do work with recruitment agencies, that engagement is formalized by a contract. Fees will only be paid when there is a contract in place. Without a contract in place, we will not accept invoices on unsolicited resumes, even if the candidate was ultimately employed by Allianz.
Finally, please do not contact hiring managers directly.
Allianz Group is one of the most trusted insurance and asset management companies in the world. Caring for our employees, their ambitions, dreams and challenges, is what makes us a unique employer. Together we can build an environment where everyone feels empowered and has the confidence to explore, to grow and to shape a better future for our customers and the world around us.
We at Allianz believe in a diverse and inclusive workforce and are proud to be an equal opportunity employer. We encourage you to bring your whole self to work, no matter where you are from, what you look like, who you love or what you believe in. We therefore welcome applications regardless of ethnicity or cultural background, age, gender, nationality, religion, disability or sexual orientation.
Great to have you on board. Let's care for tomorrow.
Note: Diversity of minds is an integral part of Allianz’ company culture. One means to achieve diverse teams is a regular rotation of Allianz Executive employees across functions, Allianz entities and geographies. Therefore, the company expects from its employees a general openness and a high motivation to regularly change positions and collect experiences across Allianz Group.