Objectif/ rôle du poste

Allianz Group is one of the largest and most renowned financial services providers in the world, representing an international network of strong brands with first-class products. Above all, we strive for commitment to excellence in our daily business, in our relationships with customers, shareholders, employees and the community. Allianz Group serves more than 83 million customers in about 70 countries.

Allianz Technology is the international shared service company of the Allianz Group and has its registered office in Munich. Our customers are Allianz companies across the globe, to which our more than 2,500 employees offer innovative, top-quality products and services in the fields of IT, Services and Operations.

The Regional Information Security Officer (RISO) supervision and support the determination and implementation of IT security governance and its related guidelines in the field of Information Security (InfoSec). They are responsible in their region for the implementation of effective InfoSec requirements in all services provided by Allianz Technology as a shared service provider to Allianz internal customers, including services provided by 3rd parties and/or outsourced providers.

The head of the department to which the RISO has been assigned to has a direct reporting line to a member of the local executive body and a functional reporting line to the Allianz Technology central ISO function. For services they functionally reports into the Shared Service ISO Function by being responsible for the implementation of Allianz Technology’s Information SE’s principles and procedures for the services provided by the local entity.

Responsabilités principales

The function involves various tasks on regional level which can be deducted from the GISF framework for Allianz Group as well as specifically the Allianz Technology SE Information Security Policy. An alignment on specific tasks shall be reached via :

• Act as the SPOC for regional InfoSec activities, governance & regulation topics and coordination of issues;
• Support the local Allianz Technology entity or subsidiary in all issues pertaining to InfoSec;
• Support Allianz Technology Central ISO function in steering the local Branch or subsidiary;
• Participating in Branch Information Security Steering Board (ISSB) and Information Security Management (ISM) meetings;
• Implementing applicable Allianz Technology InfoSec directives and procedures within the region (e.g. ITRM / ARA process, ISMS and ISRM );
• Support of the annual compliance reporting process for OEs or subsidiaries and ensuring timely delivery of results;
• Facilitate cross-Branch or subsidiary communication and information/know-how exchange between participants.

• Support Chief ISO in coordination and pre-alignment of the target setting process for Branch ISOs in their region;
• Support preparation of Branch InfoSec action plans and pre-align with global project portfolio (group measures) and supervision progress and reporting;
• Exchange within the regional and central ISO community;
• Ensure the pre-alignment of new local ISO nominations with the Chief ISO, and the Branch Board of Management;
• Report on local nomination changes to the Chief Information Security Officer Incorporating Allianz Group and Allianz Technology SE annual InfoSec goals. These are to be aligned, agreed and tracked with the central InfoSec functions;
• Exchange within regional CSG and support them in their regulatory InfoSec related governance requirements.

Key requirements /skills /experience:
a) Qualification, Certification and Experiences (education, certificates, special IT skills, languages etc.)
University degree in computer science, natural sciences etc. or equivalent professional experience;

• Profound knowledge of information security management systems and relevant industry standards (in particular ISO2700x, PCI-DSS, COBIT);
• CISM, ISO27001 Lead Implementer / Auditor, CISSP - certifications desirable;
• Fluent English language skills (written/spoken) as well as fluency in at least one of the respective local language.

Skills and Competencies (functional / technical / methodological / social skills, Allianz competencies):

• Minimum 5 years of experience in role of information security officer;
• Practical in-depth experience in the work fields provider management, IT outsourcing and control frameworks (including Cloud providers);
• Advisory and problem-solving competences towards several stakeholders;
• Project management and leadership competencies.