Job
- Level
- Experienced
- Job Field
- IT, Security
- Employment Type
- Part Time/Full Time
- Contract Type
- Permanent employment
- Location
- Hamburg, Dortmund
- Working Model
- Hybrid, Onsite
Job Summary
In this role, you identify and assess ICT risks, design and oversee the risk management framework, and advise departments on risk analyses to ensure information security compliance.
Your role in the team
- Responsibility for the identification, assessment, and monitoring of ICT risks across the entire value chain.
- Design, development, and monitoring of the ICT risk management framework in accordance with applicable legal and regulatory requirements, particularly DORA, as well as our internal guidelines.
- Close collaboration with IT, Information Security, Risk Management, Compliance, BCM, and External Procurement Management.
- Consulting and supporting the business units (1st Line) in risk analyses, protection needs assessments, and the evaluation of critical IT assets.
- Ensuring compliance with methodological guidelines such as the risk assessment methodology and the evaluation of the central risk catalog.
- Monitoring the implementation of risk mitigation measures and managing escalation processes.
- Preparation of regular reports to management, especially on DORA-related KPIs, control weaknesses, and ICT risk trends.
- Active involvement in the development and enhancement of digital operational resilience, as well as the opportunity to actively shape structures as part of a growing team in the CISO area.
- Hybrid work with daily presence at our locations (Hamburg or Dortmund).
This text has been machine translated. Show original
Our expectations of you
Education
- Possesses solid IT knowledge, acquired through a degree or training in computer science or business informatics.
Qualifications
- Possesses basic knowledge in the areas of BCM, third-party management, incident and vulnerability management, specifically regarding the requirements from DORA.
- Has basic knowledge of common information security standards such as ISO 27001 or BSI IT-Grundschutz.
- Can also clarify and communicate complex issues in an understandable manner for different target groups.
- Thinks and acts in a solution-oriented manner.
Experience
- Can demonstrate practical experience in information security, specifically in the area of IT risk management and the continuous development of the ISMS as well as the internal control system (ICS).
This text has been machine translated. Show original
Benefits
Health, Fitness & Fun
Work-Life-Integration
More net
Food & Drink
Topics that you deal with on the job
Job Locations
This is your employer
SIGNAL IDUNA Gruppe
SIGNAL IDUNA is one of the most successful service providers in Germany. We offer our private and corporate customers in the field of insurance and finance everything they need. Accordingly, our professional opportunities are also very diverse. With passion and determination, we work behind the scenes every day on our products and advise our customers directly on site.
Description
- Founding year
- 1907
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Banking, Finance, Insurance
Dev Reviews
by devworkplaces.com
Total
(1 Review)2.7
Career Growth
3.0Engineering
2.0Workingconditions
3.4Culture
2.7
ICT risk manager
- Location
- Hamburg, Dortmund
- Working Model
- Hybrid, Onsite
- Diversity
- Open for all genders
