Job offers

IT Risk Management Specialist


About Us

ERGO Technology & Services S.A. (ET&S S.A.) was established in January 2021 following the integration of ERGO Digital IT and Atena into one entity, leveraging the strengths and best practices of both companies.

ET&S S.A. belongs to the ET&SM technology holding of ERGO Group AG, supporting millions of internal customers with state-of-the-art IT solutions to everyday problems. We are dedicated to bring digital innovations to every aspect of the landscape of insurance. Discover how we are implementing AI, IoT, Voice Recognition, Big Data science, advanced mobile solutions and much more to accommodate our customers’ future needs around the globe. See how you can be a part of the digital revolution and apply to join us today!

About the role

The role of the IT Risk Management Specialist is to make the business aware of the risks and help them decide how to manage IT risks. As 2nd LoD, the IT Risk Management Specialist works closely with IT services operating at the 1st LoD level.

How you will get the job done

  • implement and operationalize company-specific information security requirements,
  • support the fulfillment of Group-wide information security requirements, including specific outsourcing requirements,
  • actively participate in the IT risk management process in accordance with the Group’s ERGO IT Risk Management methodology, including supporting the IT risk identification and assessment process,
  • support the selection of risk response strategies and monitor the status of implementation of IT risk mitigation measures,
  • implementing information security and IT risk management policies and procedures,
  • ensuring that 1st LoD understands the IT risks that may affect their areas, including ensuring that individual risk owners understand their own responsibility for the risks belonging to them, by providing proactive and practical IT risk management guidance to business managers and support functions,
  • providing training and workshops on all aspects of related to IT risk management,
  • conducting regular reviews of the actual risk situation and controls at 1st LoD level,
  • provide regular reports in specified cycles and formats.

Skills and experience you will need

  • completed university degree, preferably in Information Technology (IT) or Business Information Systems Technology. Alternatively, completed training with an IT background,
  • work experience in an information security related position in a risk management department,
  • specialized knowledge of relevant security standards and certifications (e.g., ISO 27001 LI/LA, CISA, CISM, CISSP),
  • knowledge of relevant legislative or regulatory requirements in the field of information security and IT,
  • experience in data analysis and performance reporting at various management levels (including executive level),
  • experience working with various international stakeholders,
  • very good analytical thinking skills and attention to detail,
  • high level of commitment, results and performance orientation,
  • experience working in teams located in multiple locations,
  • very good negotiation, decision-making, communication, and training skills,
  • fluency in spoken and written English.

Nice to have

  • knowledge of supervisory regulations and recommendations of the FSC and/or BaFin for the insurance market sector,
  • knowledge of ISO 31000 family standards and COBIT standard,
  • understanding of the IT services industry and a statement in IT risk management,
  • knowledge of German language.

Interested in this position?

Apply now

Why work with us?

Let&s be fit

We realize that most of us need assistance to stay in shape and good health. That's why we provide every employee with a medical package coverage and co-finance a sports card. Additionally, we support a number of sports sections, and, you can even join our yoga team in the summer to practice yoga on the roof!

Let&s be balanced

Work-life balance is essential for us. That's why we offer our employees flexible working hours, pet-friendly offices, and if you would like to stay with your pet at home, a remote work environment. However, it won't be easy to stay at home with our in-office gaming room.

Let&s be smart

Staying up-to-date with all the new systems and technologies is not an easy task. That's why we have an extensive training and workshops offer, both in-house and with external providers. We organize hackathons and meetups, which are an excellent opportunity for our specialists to showcase their expertise. On top of that, we offer digital learning platforms, language courses, and a library.

Let&s be responsible

We love to see the difference we make together with our CSR projects. That's why we are always open to new projects, and we would love to include you in our next charity event!

Let&s be fun

At ET&S we love not only to work but also relax together. Sports events like company-wide bike race, or maybe a film marathon in our cinema room? Don't worry; we got it covered! Maybe you have a passion and would love to make an event out of it? Sure! We will help you!

Let&s be diverse

At ET&S we create a working environment free of prejudice and exclusion. Each member of our team can experience being valued, regardless of his or her gender, nationality, religious beliefs, disabilities, age, and sexual orientation or identity. Your wide range of qualifications, experiences, and ways of thinking are of great benefit to us!

Get to know us better

Check how it is working at ERGO Technology & Services

link to facebook

link to linkedin