Third-Party Cyber Risk Management Expert

Allianz Services within Allianz Technology offers a service aligned with the global Protection & Resilience Service Line to ensure that Allianz Group can respond effectively and efficiently to changes and sudden disruptions, protecting business operations (IT and Non-IT), personnel, and physical assets. Allianz Services plays a key role in implementing the core professional, procedural, and organizational requirements set by the Group Protection & Resilience team to anticipate, prepare for, and adapt to these changes and disruptions.   

Role Overview:

The Third-Party Cyber Risk Management Expert will play an essential role in the Group CISO team, contributing to the design and implementation of the Third-Party Cyber Risk Management (TPCRM) process and service.

This position will integrate in the Group CISO team, actively supporting the Group’s mission to ensure that Allianz's operations remain resilient and secure, particularly in relation to third-party engagements.

Key Responsibilities:

• Design and Implementation: Actively contribute to the design and implementation of TPCRM processes in alignment with the Digital Operational Resilience Act (DORA) and Allianz Group standards.
• Risk Assessment: Support business owner to conduct comprehensive cyber risk assessments for third-party vendors, identifying potential vulnerabilities, assessing residual risk and following up on mitigation actions.
• Stakeholder Management: Collaborate with internal and external stakeholders to ensure effective communication and management of third-party cyber risks.
• Monitoring and Reporting: Develop and maintain monitoring systems to track third-party risk exposure, and provide regular reports to senior management.
• Compliance and Governance: Ensure third-party engagements comply with relevant regulations, including DORA, and Allianz's internal policies.
• Continuous Improvement: Identify opportunities for process improvements and implement changes to enhance the efficiency and effectiveness of TPCRM activities.
• Training and Awareness: Provide training and awareness sessions to internal stakeholders on third-party cyber risk management practices and principles.

Qualifications:

• Bachelor's degree in Information Technology, Cybersecurity, Risk Management, or a related field. Advanced degrees are a plus.
• Professional certifications in risk management, IT risk management, or information security (e.g., , CISM, CRISC, ISO27001, CISA) are favorable.
• Proven experience in cyber risk management, particularly in third-party risk assessment and management.
• Proven experience in managing multiple projects at the same time.

Skills:

• Proactive and autonomous in approach to work.
• Strong stakeholder management and interpersonal skills.
• Expertise in conducting cyber risk assessments.
• Familiarity with DORA requirements and implications for TPCRM.
• Ability to work collaboratively within a team and across organizational boundaries.

Your benefits:

•    We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad
•    We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location)
•    From career development and digital learning programs to international career mobility, we offer lifelong learning for our employees worldwide and an environment where innovation, delivery and empowerment are fostered.
•    Flexible working, health and wellbeing offers (including healthcare and parental leave benefits) support to balance family and career and help our people return from career breaks with experience that nothing else can teach.

About Allianz Technology

Allianz Technology is the global IT service provider for Allianz and delivers IT solutions that drive the digitalization of the Group. With more than 12,000 employees located in 51 countries around the globe, Allianz Technology works together with other Allianz entities in pioneering the digitalization of the financial services industry.

We oversee the full digitalization spectrum – from one of the industry’s largest IT infrastructure projects that includes data centers, networking and security, to application platforms that span from workplace services to digital interaction. In short, we deliver full-scale, end-to-end IT solutions for Allianz in the digital age.

D&I statement

Allianz Technology is proud to be an equal opportunity employer encouraging diversity in the working environment. We are interested in your strengths and experience. We welcome all applications from all people regardless of gender identity and/or expression, sexual orientation, ethnicity and cultural background, age, nationality, religion, disability, or philosophy of life.

Join us. Let´s care for tomorrow.

You. IT