IT GRC Manager
Field of expertise: Risk | Permanent employmentTasks and Responsibilities
- You will be responsible for further developing our IT governance, IT risk and compliance framework in accordance with business objectives and in close collaboration with 2nd Line of Defense
- You support IT in the operational implementation of compliance requirements and help IT process management to establish consistent processes.
- You coordinate the implementation and further development of the OneTrust platform and the associated GRC modules (such as data mapping, ISRM, TPRM)
- You determine the global settings of the OneTrust platform and ensure the implementation of extensions and adjustments (such as interfaces or new modules).
- You provide active support in the further development of third party risk management frameworks, as well as the IT IKS framework and the associated tools
Your strengths
- Certifications like CISA, CRISC, CGEIT would be an advantage.
- At least 5 years of experience in the areas of IT governance, IT risk management, IT ICS or IT compliance, ideally in the insurance environment.
- A deep understanding of IT risk management, third party risk management, information security, data protection and IT processes, as well as knowledge of international IT standards and best practices (e.g. ISO/IEC 27001, COBIT, NIST CSF).
- Excellent communication skills in German and English, strong project management skills and interest in complex challenges
