Loading...
Share this Job
Location: 

Bratislava, SK

 

Third Party Cyber Risk Manager 


About Swiss Re

The Swiss Re Group is one of the world’s leading providers of reinsurance, insurance and other forms of insurance-based risk transfer, working to make the world more resilient. It anticipates and manages risk – from natural catastrophes to climate change, from ageing populations to cybercrime. The aim of the Swiss Re Group is to enable society to thrive and progress, creating new opportunities and solutions for its clients. Headquartered in Zurich, Switzerland, where it was founded in 1863, the Swiss Re Group operates through a network of around 80 offices globally. It is organised into three Business Units, each with a distinct strategy and set of objectives contributing to the Group’s overall mission.

 

About Swiss Re

The Swiss Re Group is one of the world’s leading providers of reinsurance, insurance and other forms of insurance-based risk transfer, working to make the world more resilient. It anticipates and manages risk – from natural catastrophes to climate change, from ageing populations to cybercrime. The aim of the Swiss Re Group is to enable society to thrive and progress, creating new opportunities and solutions for its clients. Headquartered in Zurich, Switzerland, where it was founded in 1863, the Swiss Re Group operates through a network of around 80 offices globally. It is organised into three Business Units, each with a distinct strategy and set of objectives contributing to the Group’s overall mission.

 

About the Role

We are looking for a new colleague who supports the Third Party Cyber Risk Management Program. You will be part of our CISO Organization and work closely together with the IT Governance team and Global Sourcing. This program is responsible to identify and assess third parties with a high cyber risk exposure, assess compliance with best-practice-standards, and ensure in close coordination with third parties that risk mitigation activities are addressed and implemented.

In your new role you will work together with a specialized offshore assessment team, will build up an internal network with specialists and service recipients across the whole organisation, and will collaborate with people from many countries around the globe. You act as an enabler and coordinator between the recipient of the service and the assessment team. One of your responsibilities will be assessments of third parties during due diligence / onboarding, in areas of special needs, or in cases where assurance reports require a risk-based review. You will get insights into many companies and learn about different approaches to manage cyber risks.

 

  • This important role requires you to raise relevant concerns regarding the control framework of a third party and to express the related risks from a business point of view, and in business terms. You will work together with the assessed third parties to develop an action plan to mitigate the risk. For this role, you should be able to communicate risks, expectations and recommendations to third parties, explain how to improve the control environment, and monitor and track observations through to resolution.

 

Swiss Re's vision is to make the world more resilient. The Third Party Cyber Risk Management Office supports our vision by reducing cyber risks for us and our partners.

 

About the Team

The Chief Information Security Officer (CISO) function is the principal point for cyber and information security activities across Swiss Re. We have the role to oversee security governance, risk and compliance, define and advance the company's cyber security concepts as well as carry out the implementation of necessary security capabilities.

Do you want to contribute directly to Swiss Re's cyber security initiatives, and work together with internal and external stakeholders to improve the cyber security and make cyber risks transparent? This is what your role is all about.

 

About You

You bring with you

  • Experience in IT Audit, risk management or security activities preferably in the financial services industry
  • Able to work on your own with minimum guidance and build a network with other subject matter experts
  • Sound knowledge of information security on a technical as well as a security management level
  • Knowledge of ISO 27'00x / NIST SP 800-53 / ISAE 3000 / SOC 2 standards and reports
  • Ability to describe IT related risks and controls, bring them into the business context and communicate assessment results effectively at all levels of the organisation
  • Sufficient knowledge about third party management/outsourcing processes and risks which allows a professional discussion with Sourcing / Risk / Legal managers
  • Degree or qualification in Business IT related discipline or equivalent technical and business experience
  • CISA or CISM certification
  • Good to excellent command of English
  • Any additional language is a plus (Slovakian, German)

 

 

 

Minimum base salary for this job from 1700  EUR gross/month/full time. Our offer to you may be higher based on your skills and experience and will include additional rewards and benefits. *

 

*We are required by law to disclose basic wage component (minimum salary) for the advertised positions. We carefully consider your professional competencies, qualifications and experience in our compensation package and/or when offering you other positions. Our compensation philosophy is to pay fairly, also considering market situation and the value employees may bring to Swiss Re.

 

We are an equal opportunity employer, and we value diversity at our company. Our aim is to live visible and invisible diversity – diversity of age, race, ethnicity, nationality, gender, gender identity, sexual orientation, religious beliefs, physical abilities, personalities and experiences – at all levels and in all functions and regions. We also collaborate in a flexible working environment, providing you with a compelling degree of autonomy to decide how, when and where to carry out your tasks.

 

We provide feedback to all candidates via email. If you have not heard back from us, please check your spam folder.

 


Keywords:  
Reference Code: 88997