Group Information Security & IT Risk Manager

At UNIQA, we’re committed to safeguarding our digital future. We’re looking for a proactive and detail-oriented professional to join our team in Bratislava and help shape the way we manage Information Security and IT Risk across the UNIQA Group – specifically in Austria for this Information Security & IT Risk Manager position. German is considered a requirement / key benefit for this position.Wage (gross)From 2 500 EUR/monthThe final level of salary is dependent on skills, knowledge and experience of a candidate.Place of workSKY PARK Offices I Alto Real Estate, Bottova, Bratislava, Slovakia (Job with occasional home office)As a key player in our Group Security & Resilience team, you will:Design, implement, and evolve key elements of the UNIQA Security Governance Framework, including tools and templates.Align governance with legal requirements and the evolving threat landscape, ensuring compliance across UNIQA Austria and our IT service provider, UITS.Steering the demand management process for new applications with focus on Information SecurityConduction of risk assessments on IT systems, infrastructure, and information assets, identifying and communicating security risks to senior stakeholders.Collaborate with IT and application teams to define, implement, and monitor security measures and exceptions.Perform internal controls and audits to validate the effectiveness of second-line defense activities in Information Security.Support and lead projects that enhance Group Security and Risk Management capabilities.Evaluate the security posture of suppliers and third parties as part of our Third Party Risk Management.Improve reporting tools and processes to boost transparency and data quality.Your skills & qualifications5+ years of experience in Information Security, IT Risk Management, or related fields.A strong command of Information Security & IT Risk Management, with a solid understanding of Resilience Management, Third Party Risk Management, and Process ManagementA general overview of Physical Security and Data Protection topicsHands-on experience with GRC tools, especially GBTEC BIC GRCFamiliarity with SAP Ariba is a plusExcellent analytical and risk assessment skills, with the ability to translate complex risks into actionable insightsA structured, solution-oriented, and proactive mindset that thrives in dynamic environmentsOutstanding interpersonal and stakeholder management skills, enabling you to collaborate effectively across teams and levelsProficient in German