Risk Manager for Identity and Access Management (IAM) (m/f/d)*

Company
Munich Re
Location
Munich , Germany

The ICT Risk Assurance Section is a central team of subject matter experts for Information and Communication Technology (ICT) risks and related risk management topics. Within this subset of non-financial risks (NFRs), the team provides the necessary expertise to advance the relevant control frameworks, challenge 1st LoD units, coordinate global exercises and respond to incidents of global relevance.

The team maintains a strong relationship with other central NFR functions, the regional NFR leaders and relevant 1st LoD functions - in particular Central IT, Central Procurement and Global Real Estate & Services. The team also works closely with the primary insurance segments and supports cross-segment information sharing. In severe incident and crisis situations, the team actively manages these cases and thus promotes the global organisational resilience of the Munich Re Group.

 

Your job:

As a subject matter expert, you will help build capabilities within the Integrated Risk Management function to better understand and manage Munich Re's Identity and Access Management and Privileged Access Management risks. This includes

- Establishing and maintaining the NFR policy framework based on NIST 800-53 for AC, CA and IA control families.

- Defining and refining IAM/PAM 2nd line control processes to ensure alignment with regulatory requirements and global best practices.

- Align IAM/PAM related controls within the global Information Risk Management (IRM) community.

- Ensure compliance with policies and processes in leveraged environments (on-premises and cloud).

- Maintain and develop cross-application SoD rule sets to minimise conflicts and risks.

- Continuously monitor and improve KPI/KRI metrics for IAM/PAM processes, incorporating findings into quarterly CISO reporting.

- Conduct application reviews to assess the effectiveness of IAM/PAM controls.

- Act as the primary liaison between IAM/PAM control requirements/processes and other IRM functions, ensuring seamless integration and alignment.

- Drive collaboration with IT, Audit and Risk teams to maintain security standards and foster a culture of continuous improvement.

- Evaluate and implement best practices to improve user experience while maintaining security standards.

 

Your profile:

- Several years of professional experience in risk management in the relevant field

- Financial services industry experience strongly preferred

- Relevant risk or security based certifications

- Extensive knowledge of Identity and Access Management & Privileged Access Management in both on-premises and cloud environments

- Deep understanding of IAM/PAM solutions (e.g. One Identity, SailPoint, CyberArk)

- Confidence in dealing with senior (business) stakeholders

- Proven ability to monitor and manage multiple requests simultaneously

- Fluent command of German & English language

If you are genuinely interested in playing an active role in shaping a new function and have the necessary background, we look forward to receiving your application.

 

Application Instructions

Please apply through our online portal and upload your CV, as well as your academic reference letters, including school certificates, graduation certificates and transcripts of record for any degrees. If applicable, please also submit reference letters from any previous employers or certificates from any other qualifications you may have. We recommend writing a cover letter to tell us more about why the position and Munich Re is of interest to you.

 

About us

As the world's leading reinsurance company with more than 11,000 employees at over 50 locations, Munich Re introduces a paradigm shift in the way you think about insurance. By turning uncertainty into a manageable risk we enable fundamental change. Join us working on topics today that will concern society tomorrow, whether that be climate change, major construction projects, medical risk assessment or even space travel. 

Together we embrace a culture where multiskilled teams dare to think big. We create the new and the different for our clients and cultivate innovation.

Sounds like you? Push boundaries with us and be part of Munich Re.

Our employees are our greatest strength. That’s why we offer them a wide range of benefits. You can find some examples below.

 

Unlock your potential

• Diversity, Equity & Inclusion: we embrace the power of differences and are convinced that diversity fosters innovation and resilience and enables us to act braver and better.
• Continuous Learning: we believe that continuous learning is a key differentiator and critical for building new skills and accelerating growth.
• Career Mobility: we actively support career mobility, and our strong global and regional presence offers a wealth of career growth opportunities for you.

 

Rewards & Recognition

• Competitive salary: appropriate compensation for your high level of commitment.
• Retirement provision: state of the art in-house pension solutions.
• Work-life balance: promoting the compatibility of family and work in addition to overall work-life balance.
• Health management: focus on your physical and mental health far beyond legal requirements.
• Hybrid working: living the best of both worlds – we offer you a very flexible approach as well as the opportunity to work from abroad on an occasional basis.

 

* Munich Re not only stands for fairness with regard to its clients; it is also an equal opportunities employer. Severely disabled candidates will also be prioritized, if equally qualified. 

 

Münchener Rückversicherungs-Gesellschaft
Katharina Schlechter  • HR Consultant
Königinstraße 107 • 80802 München • GERMANY