Information Security Senior Specialist

Job Purpose

We are looking for an Information Security Senior Specialist who will support and establish the implementation of the organization’s Information Security Framework, ensuring compliance with Information Security and Regulatory Requirements. This person will promote awareness of Information Security across the organization and will monitor the progress of Information Security projects, ensuring a robust Technical and organizational Information Security posture. The role reports to the Chief Information Security Officer.

What you will do

• Develop and maintain Information Security policies and procedures, applying best practices, standards and frameworks
• Conduct ICT & Security Risk Assessments to identify discrepancies, provide recommendations and design security controls
• Conduct compliance assessments against the applicable legal and regulatory requirements or group standards (e.g. ISO 27001, PCI DSS)
• Evaluate organizational and technical security controls in the lifecycle of services, solutions and processes
• Support audits, technology and compliance information security assessments
• Respond to information security incidents
• Promote the information security strategy of the Group to ensure the confidentiality, integrity, and availability of information assets
• Monitor metrics to ensure alignment of Information Security Management Framework
• Consult on the design of security-by-design solutions and cybersecurity controls
• Design and implement the information security awareness program
• Remain up to date on emerging threats and evolving security mechanisms and technologies

What you bring

• Minimum 6 years of dedicated Information Security or relevant experience
• Bachelor or Master degree in Computer Science, Information Systems or Information Security related fields
• High technical fluency in English language
• Demonstrated ability to write clear and concise technical documentation
• Familiarity with common enterprise IT architectures
• Ability to work with Technical and Non-Technical business owners
• Ability to multi-task and change priorities with short notice
• Ability to maintain professionalism and always strive for high ethical standards
• Desire to self-educate on the ever-changing landscape of system vulnerabilities and exploits
• Relevant certifications – CISSP,  CISM, CISA, ISO27001 lead implementor/auditor will be considered a strong plus

What We Offer

• Competitive salary and benefits package
• Professional development and education
• Health and wellbeing programs
• Positive learning and growing environment

Allianz Group is one of the most trusted insurance and asset management companies in the world. Caring for our employees, their ambitions, dreams and challenges, is what makes us a unique employer. Together we can build an environment where everyone feels empowered and has the confidence to explore, to grow and to shape a better future for our customers and the world around us. 
At Allianz, we stand for unity: we believe that a united world is a more prosperous world, and we are dedicated to consistently advocating for equal opportunities for all. And the foundation for this is our inclusive workplace, where people and performance both matter, and nurtures a culture grounded in integrity, fairness, inclusion and trust.
We therefore welcome applications regardless of ethnicity or cultural background, age, gender, nationality, religion, social class, disability or sexual orientation, or any other characteristics protected under applicable local laws and regulations.
Join us. Let's care for tomorrow.