Description :

Role Description :

Within the central division Group Technology (GT) / Risk & Security (RnS) Operating Office & Transformation (IT1.6.1).

Operating Office & Transformation is the enabler and accelerator for driving the Group Technology (GT) Risk & Security mission through building sustainable, effective and efficient run and change capabilities and connecting dots between demand/risk, priorities/capacities/budgets and strategic change management.

IT Risk Coordination and Security Risk Control (IT 1.6.1.3) objective is to serve as one stop shop for GT risk governance, RnS tower commitment governance, and Supply Chain Information Security Risk. .

The IT Risk Officer is responsible for coverage across GT functional organization and reports directly to the Head of IT Risk Coordination & Security Risk Control (IT 1.6.1.3). The officer manages key relationships including but not limited to Munich Res Integrated Risk Management (IRM), Group Legal and Compliance (GCL), Central Procurement (CP), and Third Party Business relationship Managers.

The IT Risk Officer has the primary responsibility for assessing Information Security Risk of Third Parties. The role is based in Mumbai.

Key Accountabilities & Responsibilities :

- Responsible for Information Security assessment of Third Parties within MR Group. This includes support for security assessment within tenders and for new Third Party partnerships as well as ongoing/periodic risk assessment of established Third Party providers.

- Supports MR Group risk management regulatory obligations in the field of Third Party Risk management.

- Supports team success by contributing to continuous improvement.

- Provides cover for IT risk officers in other areas.

- Foster and contribute to global collaboration within RnS and more broadly in GT and MR Group.

Key Competencies & Skills required :

Technical Skills :

- IT Risk Management, Third Party Risk Management, Vendor Risk Assessments

Nice to have :

- Expert knowledge in IT Risk and Information Systems Control, IT Security and Compliance programs, Data Protection principles and practices. 2+ years of relevant professional experience in Third Party Risk Management is preferred

- Expertise in relevant laws and regulations, applicable to financial service organizations/reinsurers

- Proven experience in successfully managing business and partner relationships

- Calmness and clarity of thought under pressure with ability to maintain confidentiality and oversee and handle multiple requests at the same time

- A highly motivated person focusing on personal development, enablement with For internal use only/Internal

Behavioral Skills :

- Cultural awareness

- Excellent command of business English

- Good interpersonal, communication and organizational skills relevant to the role.

- Willingness to learn and quickly adapt to changing requirements.

- Proactive approach to identifying issues and presenting solutions and options

- Ability to direct and guide teams as relevant

Previous Experience & Qualifications :

Minimum Educational Qualification :

- Bachelors or Masters degree in Computer Science /Engineering/Information Technology

- Candidate with non-computer science degree must have minimum 1 year of relevant experience

- MBA in IT / Insurance/Finance can also apply for Requirements Engineer and Test Engineer role.

Certification if any :

- Certified in one or more relevant industry recognized certification such as CTPRA/CTPRP, CISM, CRISC, CISSP, CGEIT, ITCM, or other relevant industry certification.

Years Experience & Knowledge :

- 2+ years in IT Risk and TPRM