Chief Information Security Officer (CISO) Allianz Investment Management SE (f/m/d)
Job Purpose Role
The Chief Information Security Officer (CISO) is part of the Investment Processes & Digital Transformation Team, has a functional reporting line to the Group CISO, and regularly communicates directly with the Group Information Security Function. The CISO will be supporting the company vision and strategy by ensuring that information assets and technologies are adequately protected at any time.
Key responsibilities
* Lead the development and implementation of effective information security policies, standards, procedures, and guidelines.
* Ensure that the requirements of the Allianz Group Information Security Framework (GISF) and additional AIM specific IS requirements are fulfilled, communicated to and applied by all relevant stakeholders at Operational Entity (OE) level.
* Work with senior management to align security initiatives with business objectives and ensure that information security is integrated into the organizations business processes.
* Identify, assess, and prioritize security risks and implement appropriate risk mitigation strategies.
* Oversee the management of security incidents and provide timely resolution and response to Board of Management and to the Group CISO.
* Manage the development and delivery of security awareness training programs for employees such as Phishing Resilience Trainings.
* Advise the OE Governance and Control Committee, the OE Board of Management and OE employees on IS topics.
* Oversee the selection, implementation, and management of security technologies and tools.
* Communicate applicable corporate rules and IS relevant information within the OE and serve as a local point of contact for other Protection and Resilience functions and AIMs 2nd line of defense.
Key requirements /skills /experience
* Bachelors degree in Computer Science, Information Technology, or a related field; Masters degree preferred.
* Minimum of 3 5 years of experience in information security.
* Strong knowledge of GISF or other information security management frameworks, such as ISO/IEC 27001 or NIST.
* Proven experience in developing and implementing security policies, procedures, and standards.
* Experience with security technologies, including firewalls, intrusion detection systems, encryption, cloud, and identity management.
* Experience with Archer and ADOIT preferred.
* Excellent leadership, communication, and interpersonal skills.
* Supportive and collaborative mindset with the willingness to drive things forward.
* Willingness to continuously educate yourself on latest trends in the Information Security area.
Desired start date is 1.06.2025 or earlier if available.
64402 | IT & Tech Engineering | Professional | n.a. | Allianz I