Digital Risk Advisor II

Digital Risk Advisor II

Are you passionate about cybersecurity and ready to make the world more resilient? Join Swiss Re as our Digital Risk Advisor II and become the cornerstone of our cyber governance framework. In this dynamic role, you'll serve as the vital bridge between our organization and stakeholders, leveraging your expertise to ensure robust digital security while driving innovation in risk management processes.

About the Role

As Digital Risk Advisor II, you'll be at the intersection of cybersecurity expertise and stakeholder communication, providing critical guidance on our cyber security framework. You'll gain comprehensive visibility across our global cyber governance landscape while championing process improvements and innovative solutions.

Key Responsibilities

• Serve as the first point of contact for IT governance, risk, and compliance (GRC) inquiries from internal/external clients and regulators

• Represent Swiss Re to external clients and regulators, ensuring compliance with international cyber regulations

• Provide comprehensive information and assurance to various stakeholders about our cyber security framework and activities

• Develop deep expertise in Swiss Re's cyber processes and control environment

• Lead process improvements and automation initiatives across cyber governance and risk

• Champion new technologies and methodologies to streamline workflows and enhance security operations

• Drive continuous innovation in finding better approaches to digital risk management

• Collaborate internationally with diverse teams to strengthen our security posture

About the Team

The Security Team serves as the focal point for all security activities across Swiss Re. We are responsible for cybersecurity engineering and operations, corporate security, governance, operational resilience, risk and compliance. We define and advance the company's security strategy.

As part of the Security Team, the Regulatory Monitoring team safeguards compliance with international cyber regulations and provides assurance to various stakeholders. We foster a collaborative environment where innovation and expertise come together to protect our digital assets.

About You

You're a curious and proactive professional who thrives in complex environments. You understand that effective cybersecurity is as much about communication as it is about technical knowledge. You're passionate about continuous improvement and can translate complex security concepts for diverse audiences while maintaining composure under pressure.

We are looking for candidates who meet these requirements:

• 4+ years of experience in IT, governance, SOC/ISAE3000, or regulations in complex corporate environments

• Strong communication skills with the ability to engage effectively with diverse stakeholders from clients to IT security teams and management

• Degree or qualification in business IT-related subject area or equivalent technical and business experience

• Comprehensive knowledge of information security across technical, organizational, and management levels

• Experience working with IT regulations and compliance frameworks

• Clear and articulate spoken English to effectively engage with internal and external stakeholders

These are additional nice to haves:

• CISA, CISM or related cybersecurity certifications

• Knowledge of standards and frameworks such as ISO 27'00x, NIST SP 800-53, ISAE 3000, or SOC 2

• German language skills

• Experience in process automation and efficiency improvement

• Background in risk assessment methodologies and tools

Our company has a hybrid work model where the expectation is that you will be in the office at least three days per week