A dynamic medium-sized insurance company that is part of one of the largest insurance groups in the world. They are also an insurance partner of one of the largest automobile manufacturers in the world, developing and selling outstanding insurance and financial services products for all brands within their partnership. Their German branch is based near Munich where a large part of the employees of their European IT organization work, providing IT services across Europe reside with approx. 1,000 internal colleagues. Together with you, they want to successfully expand their Central IT Security Operations Center.
THE ROLE
As a GRC Specialist, you will be supporting the IT organization in complying with all internal and external governance and compliance requirements. You will be implementing IT GRC standards, procedures and processes as well as implementing the IT risk management approach and further improve it within their Group IT, ultimately consolidating and reporting the core risks. You will also be handling the IT governance frameworks and reporting regularly to the relevant stakeholders.
SKILLS REQUIRED
- You have professional experience as part of an IT GRC team or have experience in the areas of governance, risk and compliance
- You have experience in conducting risk analysis and maintaining a risk register in an IT environment
- You have extensive knowledge of IT governance frameworks and best practices such as COBIT and ITIL
- You have knowledge of other regulations and standards that are relevant to IT operations (e.g. ISO 27001/2, NIST, BSI guidelines, VAIT, GDPR)
- You have an excellent understanding of risk management principles and best practices
- Basic understanding of IT environments, systems, services and processes is a matter of course for you
- You can confidently understand and communicate complex issues in English and German
COMPANY BENEFITS:
- Travel ExpensesBike-to-work
- Bike to work scheme
- Company pension
- Healthcare Insurance
- Free drinks/snacks
