Logo of Huzzle

Risk Manager

  • Job
    Full-time
    Mid Level
  • IT & Cybersecurity
    Business, Operations & Strategy
  • Barcelona

AI generated summary

  • You need a relevant degree, 3+ years in risk management, knowledge of frameworks like GDPR and ISO 27001, strong communication skills, and analytical abilities. Certifications are a plus.
  • You will evaluate operational risks, ensure compliance with DORA, investigate events, monitor action plans, prepare reports, coordinate risk assessments, and collaborate with various teams on ICT risks.

Requirements

  • University degree in Computer Science, IT, Business Administration, or a related field.
  • Minimum of 3+ years of experience in operational risk management, Information Governance, Audit and/or Security or related field.
  • Knowledge of risk management methodologies, internal control frameworks, cybersecurity frameworks, and relevant regulatory requirements (DORA, GDPR, COBIT, ISO 27001, Solvency II) is a plus.
  • Fluent in English, both spoken and written.
  • Strong communication and interpersonal skills, with the ability to work effectively across teams and departments.
  • Proactive with excellent analytical and problem-solving skills.
  • Ability to explain technical concepts and risks to non-technical stakeholders effectively.
  • Professional certifications in IT security, audit, and/or risk management (e.g., CISM, CISA, CRISC, CISSP) not mandatory but will be a plus.

Responsibilities

  • Identify, evaluate, and monitor operational risks, with a particular focus on ICT Risks.
  • Ensure regulatory compliance concerning DORA and digital resilience management.
  • Record, investigate, and analyze operational events. Monitor action plans to prevent future incidents.
  • Coordinate operational and project risk assessments and follow-up on internal controls implementation and issues, especially in topics related to information security, data governance and protection, third-party management and business resilience.
  • Prepare clear and structured reports and presentations for management and support in the coordination of ICT Risks forums.
  • Participate in Group/ZIE ICT Risks forums and workgroups.
  • Contribute to the development and improvement of operational key risk indicators (KRIs).
  • Work closely with Operations Governance, Business Resilience, Third-Party, IT, IT Security (GCS) teams, and other key departments.

FAQs

Do we support remote work?

Yes, we support remote work in a hybrid format, allowing you to organize your work schedule as you wish.

What qualifications are required for the Risk Manager position?

A university degree in Computer Science, IT, Business Administration, or a related field is required.

How many years of experience do I need for this role?

A minimum of 3+ years of experience in operational risk management, Information Governance, Audit, and/or Security or a related field is needed.

Is knowledge of regulatory requirements necessary for this job?

Yes, knowledge of risk management methodologies, internal control frameworks, cybersecurity frameworks, and relevant regulatory requirements (like DORA, GDPR, COBIT, ISO 27001, Solvency II) is a plus.

Are professional certifications in IT security mandatory?

No, professional certifications in IT security, audit, and/or risk management (e.g., CISM, CISA, CRISC, CISSP) are not mandatory but will be considered a plus.

What are the main responsibilities of the Risk Manager?

Responsibilities include identifying, evaluating, and monitoring operational risks, ensuring regulatory compliance, investigating operational events, coordinating risk assessments, and preparing reports for management.

Does Zurich offer flexible benefits?

Yes, Zurich provides flexible remuneration options allowing you to choose benefits that best fit your needs, including medical insurance, training, and volunteering programs.

How many vacation days do employees receive?

Employees receive 25 vacation days, plus additional time off for insurance day and their birthday.

Is there an opportunity for personal development within the company?

Yes, Zurich encourages personal development through programs like "Talent in Motion," English classes, training, and personal mentoring.

Can employees participate in volunteer work?

Yes, Zurich encourages volunteer work and gifts employees a whole working day to dedicate to the cause closest to their hearts.

Finance
Industry
10,001+
Employees
1872
Founded Year

Mission & Purpose

Zurich Insurance Group, commonly known as Zurich, is a leading multinational insurance company headquartered in Switzerland with a strong global presence, including the UK. Their core business involves providing a wide range of insurance products and services to individuals, businesses, and institutions. Zurich's ultimate mission revolves around helping their customers understand and protect themselves from risks. They achieve this by offering various insurance solutions, including life insurance, property and casualty insurance, as well as pension and investment products. Zurich's purpose is to safeguard individuals and businesses against unforeseen events, ensuring financial security and peace of mind. They are committed to delivering excellent customer service, promoting sustainability and resilience, and making a positive impact on the communities they serve.