Allgemeine Projektdaten

Position

CISO (m/w/d) ad interim

Tagessatz

nach Vereinbarung

Spesen

zzgl. Spesen

Laufzeit

ab sofort - 06.05.2025

Einsatzland

Deutschland

Einsatzort

nicht veröffentlicht

Erfdl. Verfügbarkeit

20 %

Branche

Versicherungen

Funktion

IT & Organisation

Leistung

Projektmanagement

Aufgaben & Ziele

Aufgabenstellung

Our client, an international management consultancy, is looking for a CISO (m/w/d) for the following tasks:

  • Day to Day CISO tasks – 2 days per month
    • This covers the BAU tasks such as the regular meetings with key asset owners, monitoring of the information security management system against Key Performance Indicators and supporting the key processes such as Incident management. This will include reviewing and monitoring the current policies and processes to ensure that they meet the regulatory requirements, in particular Bafin’s Supervisory Requirements for IT In Insurance Undertakings (Versicherungsaufsichtliche Anforderungen an die IT – VAIT)

  •  Audits – 4 days a year
    • The CISO is expected to be involved in the annual internal audit process, along with the annual PwC solvency II audits. Whilst IT will cover 95% of these audits, the CISO is required to support these audits and be responsible for the information security aspects of them. There is the possibility that unscheduled audits may occur, such as a visit from BaFin, which will require the CISO, however we would expect these to be charged at a daily rate as required.

  • Management Reporting – 4 days a year
    • Reporting on the status and KPI’s of the security management system is required by the board on a quarterly basis. This will be supported by the Head of IT.


Note: This project is part of a tender. The actual assignment depends on whether our client wins the project. Due to the tendering process, the decision may take more time.

Personalverantwortung

keine Angaben

Budgetverantwortung

keine Angaben

Anforderungen & Kenntnisse

Anforderungen

  • Several years of experience as CISO or Information Security Officer at a bank or insurance company 
  • Sound expertise in the areas of information security and financial services regulation
  • Ideally insurance expertise/basic understanding of an insurance business model
  • Ability to independently prepare and moderate workshops
  • Excellent communication skills to coordinate stakeholders and drive coordination

Sprachkenntnisse

Englisch
verhandlungssicher
Deutsch
verhandlungssicher
zum Projektarchiv