Job Detail

Job description

The early inclusion of IT and technology will in future be even more crucial for the business success of Baloise and is therefore of high strategic relevance. In order to do justice to this development, the Baloise Group is expanding its existing Group structure in the first quarter of 2019 with a newly created corporate division, Group IT. 

In your role as Senior Information Security Manager, you will be responsible for maintaining a Group-wide information security strategy and in your role you will act as a key part of the Group IT Information Security & Compliance discipline in a cross-border matrix organisation. 

The following tasks also await you in your future role:

• Development, construction and maintenance of an ISMS for the Baloise Group


• Definition, implementation and control of Group-wide information security standards and guidelines


• Identification, assessment and reporting of information security risks for various target groups (e.g. Executive Committee, Group Risk Management).


• Assessment of security solutions and their incorporation in the enterprise security architecture


• Support for project and line organisation on security issues 


• Undertaking of a regular campaign to raise awareness around information security


• Development of recommendations (measures) to improve information security in the Baloise Group

What we expect

You are a dedicated personality who likes to take the initiative, feels comfortable in an agile working environment and wishes to drive things forward and make a difference. Your analytical and collaborative method of working will enable you to communicate your goals and concerns constructively and assertively to a diverse range of recipients. You are a reliable, organised and customer-oriented team player who is capable of finding creative ideas and solutions for different situations and problems and thereby integrating a wide range of interests.

As Senior Information Security Manager, you should also possess the following: 

• University degree in information technology or equivalent practical experience


• Certification as Chief Information Security Officer CISO/CISM and/or CISA or other security certification


• Extensive IT expertise (technology, methods and standards) plus legal and regulatory expertise


• Long-standing and extensive IT and IT security experience across the IT information security and compliance spectrum (5 to 10 years)


• International project management experience in a matrix organisation


• Fluent German and English