96278 | Risk Management | Professional | Non-Executive | Allianz Services | Full-Time | Permanent

The Information Risk Management Specialist is part of the Technology & Risk Services team of Allianz Services, and is responsible to provide subject matter expertise in regards to the security assurance being delivered to Allianz operating entities, while also providing operational support to ensure that project goal is being met.

Responsibilities
• Analyze customer needs and develop innovative concepts to meet customers’ expectation• Contribute to the day-to-day operations of the assigned tasks until completion
• Complete project deliverables within agreed deadlines
• Work with clients during the security assurance process by advising during working sessions, review and validation of documentation and evidences provided
• Prepare documentation and conduct progress reporting and tracking within the Allianz Services team and with clients
• Contribute to the preparation of working papers, presentations, reports and other correspondences to meet stakeholders’ expectations
• Review junior team members’ work effectively and ensure that deliverables are relevant and up to standard at all times
• On-going troubleshooting, problem resolution, conflict management and stakeholder management with client counterparts
• Advise our clients in the area of information security management according to Allianz policies and industry-recommended practices

Key requirements / skills / experience
• Degree in IT/Information Systems/Computer Science or any other. Candidates with no educational background in IT can also be considered on a case to case basis, if their working experience is relevant to Allianz Services’ requirements. • Experience in project management would be appreciated but not mandatory
• Minimum of 3 years of experience with at least 1-2 years of relevant IT/IT Security work experience such as IT service management, system administration, security monitoring, identity and access management, IT audit/governance/risk management among others, would be much appreciated
• Experience with information security standards and frameworks such as ISO 27k suite (27001, 27002 etc), COBIT or NIST CSF and ability to apply them in a working context
• Have a keen interest in learning and developing new skillsets in emerging cyber security areas
• Ability to foster working relationships with clientsDesired requirements / skills / experience
• Information risk management, IT Governance, IT operations or any Information Security work streams such as offensive and defensive security. Either by previous work experience or
studies.
• Experience in designing and implementing risk, governance, and control frameworks; conducting risk assessments; and testing business processes and internal controls
• Understanding of data privacy and business continuity, and relevant safeguarding function controls
• Insurance and/or financial services business experience or knowledge would be a plus

Possession or target to obtain one of the following certification(s) is a plus:
• CISM, CISA, CRISC, CISSP, ISO 27001 Lead Auditor/Lead Implementor and ISO 27005 Risk Manager• Other relevant certifications in emerging areas of cyber security such as cloud computing. e.g. CCSK, CCAK

Note : We highly welcome candidates with a genuine interest and affinity for Information Technology (IT) and Generative Artificial Intelligence (GenAI), as these attributes are considered valuable assets to our team.