The Local Information Security Officer (LISO) of Allianz Technology Iberolatam ensures the continuity of critical business functions and minimizes information loss in the event of a disaster. He / she focuses on governance, compliance, risk management and awareness, with the aim to ensure confidentiality, integrity and availability of Allianz Technology information.
What you do
- Act as central contact person for information security & risk-related matters in the service provisioning, provides information security & risk consulting and liaises on all related matters to/with all relevant stakeholders
- Evaluate, recommend, develop, monitor and maintain IT security policies, procedures and systems
- Ensure that IT security architecture, controls, processes, policies and procedures are aligned with IT security standards and requirements for data protection, business continuity, IT service continuity and disaster recovery
- Identify security risks and exposures, develop mitigation strategies to prevent future incidents and improve security
- Develop procedures and act as interface for IT security risk assessments and compliance audits
- Develop IT security policies, implement information systems and cyber security policies and manage appropriate protective, detective and responsive measures against intrusion, frauds, attacks or leaks but also to raise awareness
- Develop and test plans to ensure the continuity of critical business functions and minimizes information loss in the event of a disaster
- Systematically assess the effectiveness of security controls in all services provided by Allianz Technology, its partners and third-party providers
- Define and conduct information security trainings and awareness campaigns, promote knowledge and awareness of Allianz Technology security requirements and processes
- Manage security risks and their related assessments, identify deviations from security policies and guidelines and develop effective strategies to mitigate identified risks or deviations
What you bring- Higher education degree in IT or comparable technical education
- Relevant work experience in information security, security policies, security systems and governance
- ITIL certification on higher proficiency levels
- IT security certifications officially recognized by Allianz Group IT Risk & Security
- Understanding the security architecture and technical platforms
- Expertise in business continuity management (BCM), IT risk and IT security management
- Applying analytical thinking, methodological and conceptual as well as consulting skills
- Knowledge of legal and regulatory aspects related to IT risk and security
- Profound knowledge of information security management systems and relevant industry standards (in particular ISO2700x, PCI-DSS, COBIT)
- CISM, ISO27001 Lead Implementer / Auditor, or optional CISSP - certifications desirable
What we offer- We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad
- We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location)
- From career development and digital learning programs to international career mobility, we offer lifelong learning for our employees worldwide and an environment where innovation, delivery and empowerment are fostered
- Flexible working, health and wellbeing offers (including healthcare and parental leave benefits) support to balance family and career and help our people return from career breaks with experience that nothing else can teach
55556 | IT & Tech Engineering | Professional | Non-Executive | Allianz Technology | Full-Time | Permanent
About Allianz Technology Allianz Technology is the global IT service provider for Allianz and delivers IT solutions that drive the digitalization of the Group. With more than 13,000 employees located in 22 countries around the globe, Allianz Technology works together with other Allianz entities in pioneering the digitalization of the financial services industry.We oversee the full digitalization spectrum - from one of the industry's largest IT infrastructure projects that includes data centers, networking, and security, to application platforms that span from workplace services to digital interaction. In short, we deliver full-scale, end-to-end IT solutions for Allianz in the digital age.
D&I statementAllianz Technology is proud to be an equal opportunity employer encouraging diversity in the working environment. We are interested in your strengths and experience. We welcome all applications from all people regardless of gender identity and/or expression, sexual orientation, race or ethnicity, age, nationality, religion, disability, or philosophy of life.Join us. Let's care for tomorrow.You. IT
To Recruitment Agencies:Allianz Technology has an in-house recruitment team that sources great candidates directly. Therefore, Allianz Technology does not accept unsolicited resumes from agencies or search firm recruiters.When we do work with recruitment agencies, that engagement is formalized by a contract. Fees will only be paid when there is a contract in place. Without a contract in place, we will not accept invoices on unsolicited resumes, even if the candidate was ultimately employed by Allianz.