AddressAllianz is a global insurance company serving across 70 different countries, from the very first day you join us you’ll know that your contributions are valued. We offer world class learning and career development opportunities, we celebrate an inclusive culture and offer hybrid working.
About the Role
We have a new opportunity within Protection and Resilience as Head of Cyber Incident Management, this is a key role within the Operational Resilience Team, where you'll be responsible for ensuring the organisation's ability to respond effectively to disruptions directly to our organisation or the supplier chain relating to a cyber event.
You'll ensure that appropriate cyber related incident and crisis management playbooks exist and are maintained, whilst continually improving the approach to cyber crisis and Incident Management across AZH, including taking the lead on playbook execution for specific crises or incidents.
Working closely with the Head of Business Continuity Management and the Crisis and Incident Manager to ensure that the design and execution of a multi-year test plan covers key cyber aspects and proactively assesses and validates the operational resilience across AZH.
You'll be responsible for providing an overview of Cyber related operational resilience lessons learnt across AZH, including reporting on lessons learnt, and assessing whether insights gained are being embraced by, and implemented into the 1st line and into related functions.
Key Responsibilities
Incident and Crisis Management
- Managing and leading cyber security crises including within the business’s supply chain, ensuring proper assessment, containment, mitigation and documentation in a complex global enterprise
- Implementing breach response best practices and upkeep of Cyber Incident response plans, standard operating procedures and Cyber Incident response playbooks, ensuring these are communicated and understood throughout the business, and that relevant individuals are suitably trained to execute their role in incidents or crises
- Initiating Cyber Forensics and digital investigation requirements to support response and recovery process as needed
- Maintaining detailed tracking plans of all internal/external outcomes/recommendations and providing support through to implementation
- Identifying trends from Cyber Incidents and proposing improvements to address any weaknesses
- Working closely with Information Security and IT teams to improve cyber related to controls
Cyber Resilience Testing
- Defining and agreeing a strategy for how to use testing to demonstrate cyber resilience and/or identify vulnerabilities, including how to prioritise how and when to test different IBSs and business assets
- Building, developing and refining a cyber scenario library that summarises a range of severe but plausible scenarios that can be used for testing purposes
- Contributing to the development of the multi-year resilience testing plan, including disaster recovery testing, based on the strategy
- Facilitating regular cyber testing and exercises to validate the effectiveness of the business continuity plans, evaluating the results, identifying areas for improvement, and updating the plans accordingly
- Ensuring disaster recovery testing complements and supports the multi-year scenario test plan to ensure full resilience testing is undertaken
Operational Resilience Lessons Learnt
- Creating a central summary of key insights and lessons learnt from tests and incidents from across the business, ensuring these are being embedded into business operations and activities and reporting to AZH Board
Governance and Reporting
- Establishing key performance indicators (KPIs) and metrics to measure the effectiveness of the business continuity, Incident Management and testing programmes from a cyber perspective, regularly monitoring and reporting on these metrics to senior management, highlighting areas for improvement and recommending corrective actions
Alignment and engagement
- Build strong relationships with key stakeholders across the organisation, including senior executives, department heads, and business unit leaders, ensuring their business continuity needs are understood and incorporated into the overall program
- Maintaining links with Risk, Compliance, Information Security and ITSCM functions in particular in order to align activities with key business risks and risk processes and reporting
- Collaborating with external partners, regulatory bodies, and industry peers to share knowledge, benchmark performance, and stay informed about emerging trends and regulations in business continuity management, Incident Management and testing.
About You
Skills and Experience
Experience of running Cyber related crises and incidents including within the supply chain
Experience of implementing effective Cyber crisis and Incident Management approach
Experience in the development of effective crisis and incident playbooks
Familiarity with relevant laws, regulations and industry standards
Excellent stakeholder management and influencing skills
Excellent communication and interpersonal skills
Ability to work collaboratively across various department and levels of the organisation
Strong analytical and problem-solving skills
Experience of developing, implementing and leading others on a strategic vision
What We Will Offer You
We offer hybrid working, you'll combine working from our Guildford office (twice a week) with working from home.
Our Benefits
Recognised and rewarded for a job well done, we have a range of flexible benefits for you to choose from, including, retail discounts, discounted insurance cover and our newly launched ElectriX car purchase scheme, so you can pick a package that’s perfect for you. We also offer flexible working options, global career opportunities across the wider Allianz Group, and fantastic career development and training. That’s on top of enjoying all the benefits you’d expect from the world’s number one insurance brand, including:
30 days + bank holidays
Annual performance related bonus
Car Allowance
Private Medical Insurance
Contributory pension scheme
Our Ways of Working
Do you need some flexibility with the hours you work? Let us know as part of your application and if it’s right for our customers, our business and for you, then we’ll do everything we can to make it happen.
Here at Allianz, we are signatories of the ABIs flexible working charter. We believe in supporting hybrid work patterns, which balance the needs of our customers, with your personal circumstances and our business requirements. Our aim with this is to help innovation, creativity, and you to thrive - Your work life balance is important to us.
Our Purpose and Values
We secure your future
Be Brave | With Heart | Everyone Counts | Inspiring Trust
Our purpose and values are more than just words on a website - they are the why and how of Allianz. They influence everything we do and guide us how to do it. Created by our people, for our people, they shape our culture, bring us together, and inspire us to be the best. Building an inclusive culture for us all to succeed.
Diversity & Inclusion
We value diversity and inclusion and back this up with our accreditations. Allianz is EDGE certified for gender inclusion, members of the Women in Finance Charter, a Disability Confident employer, Stonewall Diversity Champion members, signatories of Business in the Community’s Race at Work Charter, and an Armed Forces Covenant gold standard employer.
We recognise the strength of neurodiversity in the workplace, and the far-reaching benefits of embracing a spectrum of thinking styles and innovative capabilities. We proudly welcome applications from neurodivergent and disabled candidates, and can offer tailored adjustments to remove barriers and set you up for success in your career.
At Allianz, we encourage our people to advocate for what they need, we listen, and we act – this could include providing assistive technology, ergonomic specialist equipment, mentoring and coaching, or flexibility in the way you work, among a wide range other adjustments.
Join us - Let’s Care for Tomorrow.
41796 | Operations | Professional | Allianz Executive | Allianz UK | Full-Time | Permanent
