La posizione è aperta all'interno del team di Generali Italia.Governance & steeringPerform recurrent meetings with Asset Management Companies to monitor the execution of the ICT Risk management activitiesConsolidate on a quarterly basis the results of the ICT Risk Management activities at GIH level and report the results to GIH Risk and Control CommitteePrepare annual consolidated reporting for GIH Board of Directors on the evolution of the ICT Risk management framework and its operating effectivenessSupport the design, implementation and maintenance of the overall ICT Risk Management FrameworkCoordinate the Local CRO of newly acquired Group Asset Manager for the implementation of the ICT Risk frameworkICT Risk ManagementIdentifying and updating ICT & Cyber risk events related to business area managedReviewing ICT & Cyber risk Scenarios based on its peculiaritiesExecute quantitative and qualitative risk methodologiesPerforming the economic quantification of ICT and Security Major incidents to evaluate DORA relevanceSetting of ICT Risk Appetite Framework together with CISO and COOAnalyzing of Operative risk tolerances quarterly evidence monitoring collected and defined mitigation actionsOverseeing escalation process in case of hard limits breach and formalizing detailed risk evaluationReviewing reports and evidence shared by IT and Security functions (e.G., Backup and restore reports, Vulnerability assessments)Formalizing executive reporting providing update on ICT Risk Management Framework risk evidence and key enhancementsFormalizing and annual Reviewing ICT & Cyber Risk reports (e.G., ICT & Cyber Risk Report and IT Booklet)Educational QualificationsBachelor's degree in Computer Science, Information Technology (or equivalent experience)Professional ExperienceUnderstanding of ICT and cyber security risks and the ability to develop and execute effective testing strategies with a good understanding of regulatory compliance requirements for the Financial Markets and Asset Management IndustryAt least 5 years of relevant experience within information security or cyber risk managementTechnical SkillsExperience with ICT risk management methodologies (e.G. ISO, COBIT, NIST)Experience with relevant regulation (e.G. GDPR, DORA)Knowledge of statistical analysis and financial modelingSkillsStrong analytical thinking and problem-solving abilitiesExcellent creative, analytical and computer skills with an entrepreneurial approach to large, complex, projectsSuperior communication (written and verbal) and presentation skills (Executive level)Excellent interpersonal skills with proven ability to build relations with internal and external functionsResilient, highly responsive and proactive, ability to successfully execute multiple projects and meet deadlines (effective prioritization of workload)Well organized with the ability to manage several priorities with a hands‐on approachAbility to work independently and as part of a teamFlexibility to work with colleagues and stakeholders in an international team, operating across different countries and time zonesEnjoys a fast‐paced, high‐intensity and complex environment, troubleshooting time‐critical issues and working with peopleStrong attention to detail; willing to take proactive action and desire to roll up sleevesFluent English, any other languages are a plusAvailability for business trips
#J-18808-Ljbffr