Sr. Risk Analyst - Cyber Security

Munich Re GroupPhiladelphia, PA
78d
Match Resume

About The Position

Munich Re America Services (MRAS) is a shared service organization that delivers services to all Munich Re US P&C Companies and other group entities. As a member of Munich Re's US operations, we offer the financial strength and stability that comes with being part of the world's preeminent insurance and reinsurance brand. Our risk experts work together to assemble the right mix of products and services to help our clients stay competitive - from traditional reinsurance coverages, to niche and specialty reinsurance and insurance products. This role is embedded within the Integrated Risk Management Function, with primary responsibility for supporting the implementation of the Munich Re Group Information Security Management (ISM) and Business Continuity Management (BCM) frameworks across North America Non-Life entities. The key objective is to ensure the effective implementation and adaptation of ISM and BCM requirements at the entity level, aligned with local regulatory requirements and Group-wide objectives. Additionally, this role will support the independent review and assessment of information security and business continuity risks.

Requirements

  • Undergraduate degree in computer science, information security, IT management, or a related field.
  • A minimum of 5 years' experience, preferably within a large company or the (re)insurance industry.
  • Experience in governance, risk and compliance is preferred; prior technical information security background is a significant advantage.
  • Strong interpersonal and team-building skills, with the ability to collaborate effectively in international and hybrid settings.
  • Excellent analytical, conceptual, and presentation skills, with the ability to communicate complex information to diverse audiences, including Board-level stakeholders.

Nice To Haves

  • An MBA or Risk Management credentials is desirable.
  • Relevant certifications, such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM), or Certified Business Continuity Professional (CBCP), preferred but not required.
  • Experience in IT, information security, business continuity planning, or audit would be an asset to this role.

Responsibilities

  • Support the implementation of ISM and BCM frameworks that align with both local and Group requirements, entailing the identification, measurement, monitoring, control, and reporting of non-financial risks, with a specific focus on information security and business continuity.
  • Support a multi-functional program aimed at ensuring compliance with relevant regulatory requirements, including the New York Department of Financial Services Cybersecurity regulation, California Consumer Privacy legislation, various state Insurance Data Security acts, and applicable Canadian regulations.
  • Participate in information security incident task forces, including post-incident reviews and 'Lessons Learned' exercises, to evaluate and manage significant information security incidents.
  • Oversee the business continuity management life cycle for American Modern, which includes delivering training on BCM applications and tools, as well as providing analytical and administrative support to the BCM program.
  • Contribute to the development and revision of company guidelines related to information security management, business continuity, and third-party risk management.
  • Promote risk awareness among staff, particularly regarding information security, and develop and deliver associated training programs to enhance awareness and compliance.
  • Participate in additional company initiatives as required.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Industry

Insurance Carriers and Related Activities

Education Level

Bachelor's degree

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service