Local Information Security Officer (LISO) (m/f/d) Act as central contact person for information security & risk-related matters in the service provisioning, provides information security & risk consulting and liaises on all related matters to/with all relevant stakeholders.
Responsibilities:Evaluate, recommend, develop, monitor and maintain IT security policies, procedures and systems.Ensure that IT security architecture, controls, processes, policies and procedures are aligned with IT security standards and requirements for data protection, business continuity, IT service continuity and disaster recovery.Identify security risks and exposures, develop mitigation strategies to prevent future incidents and improve security.Develop procedures and act as interface for IT security risk assessments and compliance audits.Develop IT security policies, implement information systems and cyber security policies and manage appropriate protective, detective and responsive measures against intrusion, frauds, attacks or leaks but also to raise awareness.Develop and test plans to ensure the continuity of critical business functions and minimize information loss in the event of a disaster.Systematically assess the effectiveness of security controls in all services provided by Allianz Technology, its partners and third-party providers.Define and conduct information security trainings and awareness campaigns, promote knowledge and awareness of Allianz Technology security requirements and processes.Manage security risks and their related assessments, identify deviations from security policies and guidelines and develop effective strategies to mitigate identified risks or deviations.What you bring:Higher education degree in IT or comparable technical education.Relevant work experience in information security, security policies, security systems and governance.ITIL certification on higher proficiency levels.IT security certifications officially recognized by Allianz Group IT Risk & Security.Understanding of the security architecture and technical platforms.Expertise in business continuity management (BCM), IT risk and IT security management.Applying analytical thinking, methodological and conceptual as well as consulting skills.Knowledge of legal and regulatory aspects related to IT risk and security.Profound knowledge of information security management systems and relevant industry standards (in particular ISO2700x, PCI-DSS, COBIT).What we offer:We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad. We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location).
#J-18808-Ljbffr