Generali is a major player in the global insurance industry - a strategic and highly important sector for the growth, development, and welfare of modern societies. Over almost 200 years, we have built a multinational Group that is present in more than 60 countries, with 470 companies and nearly 80,000 employees.
GOSP - Generali Operations Service Platform is a joint-venture between Generali and Accenture that provides IT and Procurement services to Generali Group companies. Our purpose is to accelerate the Group's innovation and digitization strategy through the Cloud and shared platforms. Based in Italy, it has 5 branches across Europe and employs about 1,000 people.
CRO has the following accountabilities:
To guarantee an integrated risks management system through the definition of the risk strategy including risk appetite, limits, and risk mitigation, as well as through the identification, monitoring, and reporting of risk, with a forward-looking approach on risks to which GOSP is exposed in its activities.
To support main Group risk Management initiatives within the GOSP area of competence and responsibility.
The scope of activities includes the management of operational risks, especially Digital and Cyber risks related to the company's core business.
Main Tasks:
* Contribute to the improvement of the internal control system by identifying new options for responding to risks, especially cyber risks.
* Support vertical special risk assessments on specific projects or emerging technologies.
* Assist in fulfilling existing reporting requirements and actively participate in producing reports for senior and top management.
* Support risk identification, analysis, and mitigation, driving actions to address root causes of operational risk losses by challenging both historical and proposed practices.
* Perform regular alignment on shared risks with all involved Legal Entities in IT Risk activities.
Requirements:
* Bachelor's degree in Computer Science, Mathematics, Statistics, or related fields.
* Fluent in English; knowledge of additional European languages is a plus.
* At least 5 years of experience in IT and/or cyber security.
* Effective presentation skills.
* Knowledge of one or more international standards (e.g., ISO 31000, COBIT 2019, ITIL v3, ISO 27001).
The following are not mandatory but are considered a plus:
* Experience in risk, compliance, or audit topics.
* Knowledge of risk-based approaches.
* Basic project management skills.
* Professional certifications such as CISA, CISM, CGEIT, CRISC, ISO27001 LA, COBIT 2019 Foundation, CSX Fundamentals, CSX Practitioner, ITIL v3 Foundation, CIA, CRMA.
Skills:
* Ability to work and collaborate within a team.
* Strong listening, mediation, and negotiation skills.
* Problem-solving and analytical skills.
* Excellent communication skills and stakeholder management.
* Integrity and a reputation for trustworthiness.
* Global mindset and cultural awareness.
* Proactive, achievement-oriented, ownership-driven, and results-focused.
* Ability to embrace diversity and different cultures.
* Effective time management and self-organization skills.
#J-18808-Ljbffr