SOC Compliance Specialist (Cyber Security, Barcelona)

If you are passionate about ensuring compliance and managing security controls within a global organization, we invite you to join Allianz as a SOC Compliance Specialist. We are seeking a dedicated professional to oversee and coordinate our global security incident process, ensuring adherence to various legal requirements and best practices. This role involves working closely with the GRC team, maintaining and updating the cybersecurity risk register, and mapping controls to applicable frameworks. If you have strong analytical and project management skills, a thorough knowledge of the European regulatory environment, and experience in auditing technology-related areas, we want to hear from you.

What you can find at Allianz Technology:

• Work Life - Balance: We offer flexible working hours so you can start your working day according to your needs. In addition, during the summer and every Friday of the year, you have the option of intensive working hours, which will allow you to enjoy more free time for yourself.
• International and Multicultural Environment: We value the diversity and richness that comes from working in an international and multicultural environment. With more than 52 different nationalities represented in our company, we offer our employees the opportunity to collaborate with people from all over the world, enriching the work environment and providing the opportunity to learn and grow in a truly global setting. This diversity allows us to have a broader perspective, foster creativity and innovation, and promote an inclusive work environment where every voice is heard and valued.
• Professional Growth Opportunities: We are committed to the professional development of our employees and provide numerous opportunities for growth within the company. We value internal talent and promote internal advancement, offering training programs, mentoring, and skills development that allow our employees to advance in their careers. 
• Compensation and Benefits Package: It includes a company bonus plan, pension, employee stock program, and multiple employee discounts. 

What will make you succeed in this position?

• A high degree of professionalism, professional curiosity and skepticism, organizational, analytical and project management skills. 
• Strong written and verbal communication, interpersonal, presentation and organizational skills. 
• Ability to work independently in an international team across multiple locations with global stakeholders. 
• Thorough knowledge of the European regulatory environment applicable to financial institutions and proven ability to research, interpret and apply regulatory requirements 
• 3-5 years of experience in auditing technology-related areas such as e.g. Enterprise security control frameworks, IT incident and problem management, Automated business process controls, IT Resilience and Disaster Recovery, Identity and Access Management / Privileged Access Management/Adaptive Authentication Solutions, change management, Perimeter/Internal Security Technologies (Firewalls, Intrusion Detection and Prevention Systems) 

Your mission in the role will be:

• Oversee and coordinate global security incident process and all legal requirements coming from different laws and best practices incl. crisis management in relation to information security in collaboration with the organization  
• Control & Compliance Management: Oversee the implementation of security controls, working closely with the GRC team to ensure compliance and create actionable plans.  
• Maintain and update the cybersecurity risk register, identifying operational and strategic pattern, and ensuring effective communication with all relevant parties 
• Map defined controls set to applicable control frameworks (e.g. MITRE,  NIST, GDPR,  etc.) and identify additional controls to fill gaps. 
• Support the Legal department with evaluation of relevant information security local laws and regulations 
• Collaborate with the local Data Protection Officer (DPO) and Local Security Officer (LSO) to define, manage and improve relevant interfaces 
• Consult on local Information Security assurance reviews (logging concepts, security playbooks, etc.) 
• Identify opportunities to leverage controls automation and perform continuous monitoring. 
• Attend internal and external audits targeting the global security incident process itself or interface processes  

 About Allianz Technology

Allianz Technology is the global IT service provider for Allianz and delivers IT solutions that drive the digitalization of the Group. With more than 12,000 employees located in 51 countries around the globe, Allianz Technology works together with other Allianz entities in pioneering the digitalization of the financial services industry.

We oversee the full digitalization spectrum – from one of the industry’s largest IT infrastructure projects that includes data centers, networking and security, to application platforms that span from workplace services to digital interaction. In short, we deliver full-scale, end-to-end IT solutions for Allianz in the digital age.

D&I statement

Allianz Technology is proud to be an equal opportunity employer encouraging diversity in the working environment. We are interested in your strengths and experience. We welcome all applications from all people regardless of gender identity and/or expression, sexual orientation, ethnicity and cultural background, age, nationality, religion, disability, or philosophy of life.

Join us. Let´s care for tomorrow.

You. IT

60026 | Ingeniería informática y tecnológica | Profesional / Senior | Non-Executive | Allianz Technology | Jornada completa | Indefinido