Regional Information Security Officer

KUALA LUMPUR, Federal Territory of Kuala Lumpur, MY, 50470

Allianz

As an international financial services provider, Allianz offers worldwide products and solutions in insurance and asset management.

The Regional Information Security Officer (RISO) APAC is a key role within the Allianz Technology’s global IS organization. The RISO is responsible for oversight of the related ISMS activities, risk identification and assessment, prevention and advice to regional management as well as to the Local IS Functions with respect to the Information Security risk areas of the region, including services provided to Allianz-internal customers and those provided by third parties.

Key Responsibilities

• Oversee the regional Information Security function’s activities, including all aspects of people management, and liaise with the central Information Security Team; support the Central Information Security Function in the target setting process for local Information Security functions; track target achievement within area of responsibility.
• Exchange within CTO area and support regional and local executive body in their regulatory Information Security-related governance requirements and their responsibility to set up sound organizational and operational structures and procedures.
• Serve as central contact person for information security-related matters in the region, including interfaces to business, partners, customers and other safeguarding functions.
• Provide information security consulting and liaison with all relevant stakeholders and regional management.
• Ensure the effective implementation of Information Security principles and procedures during the full service life cycle of services offered by Allianz Technology, including those provided by external parties and outsourcing partners.
• Systematically assess the effectiveness of security controls in all services provided by Allianz Technology, its partners and third-party providers.
• Oversee the implementation of and compliance with Group-wide IS framework, regulatory requirements and industry security standards in all Allianz Technology services and in projects; oversee the annual compliance reporting process for local entities; assess and address deviations from security policies and contractual security provisions, as well as developing effective strategies to mitigate identified information security risks.
• Regularly exchange with and contribute to the global Allianz Technology ISO community.

Job Requirements

• Degree in computer science, natural sciences, or equivalent professional experience.
• 15+ years of experience in IT and Information Security related fields and/or risk management.
• Sound knowledge of IT security technology, architecture and processes, and profound knowledge of information security management systems and relevant industry standards and control frameworks (in particular ISO270xx, COBIT2019); local regulatory standards.
• Professional experience with supplier management (including Cloud providers), IT outsourcing, and relevant control frameworks; track record in defining and monitoring contractual information security provisions.
• Proven track record in people management and/or project management in complex enterprise environments.
• Ability to cope with high workload, exercising good levels of independence, judgment and initiative.
• Proficient in English, with excellent international communication skills, including the ability to prepare professional documentation for various audiences and senior management.

Allianz Group is one of the most trusted insurance and asset management companies in the world. We believe in a diverse and inclusive workforce and are proud to be an equal opportunity employer. We encourage you to bring your whole self to work, no matter where you are from, what you look like, who you love or what you believe in. We welcome applications regardless of ethnicity or cultural background, age, gender, nationality, religion, disability or sexual orientation.