Third Party Cyber Risk Manager (Ref. No.: 88997)

Place of work
Mlynské nivy 12, Bratislava
Contract type
Wage (gross)
From 1 700 EUR/monthMinimum base salary for this job from 1700 EUR gross/month/full time. Our offer to you may be higher based on your skills and experience and will include additional rewards and benefits.*

Information about the position

Job description, responsibilities and duties

About the Role

We are looking for a new colleague who supports the Third Party Cyber Risk Management Program. You will be part of our CISO Organization and work closely together with the IT Governance team and Global Sourcing. This program is responsible to identify and assess third parties with a high cyber risk exposure, assess compliance with best-practice-standards, and ensure in close coordination with third parties that risk mitigation activities are addressed and implemented.

In your new role you will work together with a specialized offshore assessment team, will build up an internal network with specialists and service recipients across the whole organisation, and will collaborate with people from many countries around the globe. You act as an enabler and coordinator between the recipient of the service and the assessment team. One of your responsibilities will be assessments of third parties during due diligence / onboarding, in areas of special needs, or in cases where assurance reports require a risk-based review. You will get insights into many companies and learn about different approaches to manage cyber risks.

This important role requires you to raise relevant concerns regarding the control framework of a third party and to express the related risks from a business point of view, and in business terms. You will work together with the assessed third parties to develop an action plan to mitigate the risk. For this role, you should be able to communicate risks, expectations and recommendations to third parties, explain how to improve the control environment, and monitor and track observations through to resolution.
Swiss Re's vision is to make the world more resilient. The Third Party Cyber Risk Management Office supports our vision by reducing cyber risks for us and our partners.

About the Team
The Chief Information Security Officer (CISO) function is the principal point for cyber and information security activities across Swiss Re. We have the role to oversee security governance, risk and compliance, define and advance the company's cyber security concepts as well as carry out the implementation of necessary security capabilities.

Do you want to contribute directly to Swiss Re's cyber security initiatives, and work together with internal and external stakeholders to improve the cyber security and make cyber risks transparent? This is what your role is all about.
"Do the right things right". This is our mission statement. To inspire confidence – and ultimate trust – from clients, regulators and shareholders in Swiss Re’s services by ensuring and demonstrating that robust controls are applied to all IT resources in Swiss Re’s value chain during their whole lifecycle. We work on behalf of the top level management to facilitate the definition and documentation of the IT Governance framework and all related activities. We provide training and consultancy, and support the implementation where appropriate.

Information about the selection process

*We are required by law to disclose basic wage component (minimum salary) for the advertised positions. We carefully consider your professional competencies, qualifications and experience in our compensation package and/or when offering you other positions. Our compensation philosophy is to pay fairly, also considering market situation and the value employees may bring to Swiss Re.

We are an equal opportunity employer, and we value diversity at our company. Our aim is to live visible and invisible diversity – diversity of age, race, ethnicity, nationality, gender, gender identity, sexual orientation, religious beliefs, physical abilities, personalities and experiences – at all levels and in all functions and regions. We also collaborate in a flexible working environment, providing you with a compelling degree of autonomy to decide how, when and where to carry out your tasks.

We provide feedback to all candidates via email. If you have not heard back from us, please check your spam folder.

Requirements for the employee

Candidates with education suit the position

University education (Bachelor's degree)
University education (Master's degree)
Postgraduate (Doctorate)

Language skills

English - Upper intermediate (B2)

Personality requirements and skills

About You

You bring with you:
- Experience in IT Audit, risk management or security activities preferably in the financial services industry
- Able to work on your own with minimum guidance and build a network with other subject matter experts
- Sound knowledge of information security on a technical as well as a security management level
- Knowledge of ISO 27'00x / NIST SP 800-53 / ISAE 3000 / SOC 2 standards and reports
- Ability to describe IT related risks and controls, bring them into the business context and communicate assessment results effectively at all levels of the organisation
- Sufficient knowledge about third party management/outsourcing processes and risks which allows a professional discussion with Sourcing / Risk / Legal managers
- Degree or qualification in Business IT related discipline or equivalent technical and business experience
- CISA or CISM certification
- Good to excellent command of English
- Any additional language is a plus (Slovak, German)


Brief description of the company

As the world 's leading reinsurance company, Swiss Reinsurance Company, based in Zurich, Switzerland, we specialize in covering concepts in capital and risk management.
We combine financial strength with experience, knowledge and creative thought to exploit new opportunities in the interests of our clients, staff and shareholders. Opportunities for you. Opportunities for us.

Number of employees

1700 and more employees

Company address

Swiss Re Business Services (Slovakia) s.r.o.
Mlynske nivy 12
821 08 Bratislava
Learn more about working in Swiss Re Slovakia.


Contact person: Tomas Balogh

ID: 3766041  Posting date: 27.3.2020  Basic salary component (gross): 1 700 EUR/month