Zurich Insurance Group (Zurich) is a leading multi-line insurer that serves its customers in global and local markets. With more than 55,000 employees, it provides a wide range of general insurance and life insurance products and services. Zurich’s customers include individuals, small businesses, and mid-sized and large companies, including multinational corporations, in more than 170 countries. The Group is headquartered in Zurich, Switzerland, where it was founded in 1872. The holding company, Zurich Insurance Group Ltd (ZURN), is listed on the SIX Swiss Exchange and has a level I American Depositary Receipt (ZURVY) program, which is traded over-the-counter on OTCQX. Further information about Zurich is available at www.zurich.com.

We are an award winning organisation General Insurer of the Year, hold CII Chartered Insurer and are listed as one of The Sunday Times Top 25 best big companies to work for.

The opportunity:

An exciting new role is available within Group Information Security to become part of a highly dedicated team in making a real difference by protecting our customer and strategic business data. You’ll deliver key governance, risk services and demonstrate compliance at Executive and Board levels. Working directly with Governance, Risk and Compliance (GRC) stakeholders, you’ll also be responsible for delivering messages around current state, actions, follow-ups within the organisation and prioritising investments for further information technology and security initiatives.

Group Information Security:

Our Group Information Security team optimis­­es our IT architecture and security engineering. Here, you’ll be part of a global team focused mainly on internal processes and standards. You’ll be working with the latest technology and some of the most accomplished people in the business.  Today, there’s a huge focus on understanding and mitigating risk, and you’ll be a big part of that mission: protecting the things people care about.

Main Accountabilities:

As an ideal candidate, you’ll be responsible for:-

• Maintaining, managing and monitoring compliance to the internal control frameworks such as IT risk standards/CITCC,ICF/RMC, regulatory/legal and other requirements
• Operating IT Governance & Compliance services at an operational, tactical and global level
• Providing support of policy/standards exceptions, reporting status to management and advising on corrective actions
• Supporting key IT stakeholders during the planningand subsequent phases and the close out process of audit and otherassurance engagements
• Providing process oversight and consulting and executing tasks assuring quality and integrity of GRC tools anddeliverables
• Assisting with the coordination and implementationof appropriate IT governance, metrics collection and reporting capabilities
• Providing analysis and identification of broader systemic issues based on results of security metrics information
• Guiding the implementation of IT compliance control objectives; providing gap analysis, tracking timely closure of identified control gaps and providing input to continuously improve relevant services and processes

• Manage and maintain relationships with key GIS, Group Audit, Internal Audit and other compliance stakeholders

Your skills and experience:

As an ideal candidate, you’ll possess the following skills, experience and qualifications:-

• Bachelor degree or equivalent in business, computer science or a related field
• Professional experience in audit, risk management, governance and IT security and/or compliance functions
• A good understanding of IT systems security including experience with security assessments
• Proven knowledge of control frameworks such as CobiT, ISF, ISO 2700x, IT SOX, ISF, PCI DSS and platform specific knowledge of current and legacy operating systems
• Knowledge of information security concepts, current information sourcing and security trends and practices
• Be willing to obtain CISA, CISM, and CISSP certifications (existing certifications are an advantage) as we’re committed to investing in our people. The successful candidate will receive funding to complete their CISA, CISM and CISSP within 3 years of joining the organisation
• Proficiency in English and German with excellent communication skills across all levels: confident, clear, articulate and engaging

• Knowledge of insurance or financial services business models

The Reward:

In return you’ll be rewarded with an attractive package including competitive base salary, competitive pension, contribution towards healthcare and excellent flexible benefits. If you feel that you have the attitude to grow and succeed in a fulfilling role, please apply today. 

Apply here: https://express.candarine.com/campaign/url/forward/269f11facece