Senior IT Auditor - Technology, DATA and AI (m/f/d) at Allianz SE

Who will you join?

At Internal Audit we make a difference - as a trusted partner we protect and improve the organization with professional excellence, state of the art technology and passion for people development.

 

At Group Audit, we collaborate with and lead the Internal Audit functions of the Allianz Group operating entities (OEs) to support the Board of Management and Audit Committee in the supervision and assessment of the Internal Control System. In addition, we perform audit services to Allianz SE as well as other Allianz entities.

 

In your role as Senior IT Auditor you will be part of the Practice IT & Operations at Group Audit, responsible for audit projects at the forefront of our audit agenda: cloud computing, cybersecurity, Artificial Intelligence governance, data management, and technology-enabled business transformation. The role is about adding value to the business by identifying risks at an early stage and helping to strengthen the internal control system.

 

The successful candidate will contribute to the efficiency, productivity and success of Allianz Internal Audit. Solid skills in technology topics coupled with strong emotional intelligence and uncompromised integrity is fundamental to each auditor’s success. Group Audit is seeking candidates who are bold thinkers with entrepreneurial spirit and a commitment to continuous learning.

 

How can you make an impact?

 

As Senior IT Auditor, you will lead and execute technology audits across a broad and evolving risk landscape. Your key responsibilities include:

• Technology & IT Audits: Plan, design, lead and execute technology-specific audits covering technology systems, IT infrastructure, IT projects and environments — evaluating the effectiveness of controls and risk management practices
• Artificial Intelligence & Machine Learning: Lead audits of AI and ML systems, assessing model governance, explainability, bias controls, data quality, and compliance with applicable AI regulations, including the EU AI Act
• Cloud Computing: Audit cloud environments (e.g., AWS, Azure, GCP), evaluating cloud governance, security configurations, resilience, cost controls, and compliance with internal policies and regulatory requirements
• Cybersecurity & Information Security: Assess the design and effectiveness of cybersecurity controls, including identity and access management, vulnerability management, incident response, and third-party and supply chain risk
• Data Governance & Management: Conduct audits of data governance frameworks, including data quality, data lineage, master data management, and compliance with data privacy regulations such as GDPR
• Regulatory Compliance: Assess compliance with relevant regulatory requirements and technology-related frameworks (e.g., DORA, EBA ICT/Security Guidelines, NIST, ISO 27001/27002) and support the organization in managing regulatory findings
• Risk Identification: Identify risk-focused audit areas, assess business processes, workflows, transactions, and control frameworks to determine deficiencies and vulnerabilities
• Data-Driven Auditing: Leverage data analytics, automation, and AI-assisted audit techniques to enhance audit coverage, improve efficiency, and deliver deeper insights
• Reporting & Documentation: Analyze audit results, formulate clear and actionable recommendations, lead closing meetings with auditees, and take responsibility for writing comprehensive audit reports and following up on the implementation of agreed actions
• Stakeholder Management: Manage relationships with auditees, handling challenging situations and delivering conclusions in a diplomatic and professional manner. Communicate effectively with stakeholders at all levels of the organization, providing timely updates on audit progress and outcomes
• Knowledge Sharing: Develop strong business relationships and encourage knowledge sharing within the global Internal Audit community to identify and implement business and technology solutions

 

 

What are you made of?

 

Minimum Qualifications

• Have a Master's degree in Information Technology, Computer Science, Information Security, Data Science, Business Informatics, or a related field — or equivalent professional experience
• Have a minimum of 6 years of experience in IT auditing or IT risk management, preferably within the financial services industry, with demonstrable expertise in at least two of the following domains: cybersecurity, cloud computing, AI/ML systems, data governance, or enterprise IT risk
• Have a strong understanding of technology risks, control frameworks, and leading industry practices, including COBIT, NIST CSF, ISO 27001/27002, ITIL, or cloud security frameworks such as CSA CCM
• Have a foundational understanding of Artificial Intelligence and Machine Learning concepts, including model risk, AI governance frameworks, and the EU AI Act
• Are familiar with relevant technology regulations and standards applicable to the financial services industry, including DORA, EBA ICT/Security Guidelines, and GDPR
• Have a good understanding of auditing principles and techniques, as well as risk management concepts
• Are proficient in using audit management software (e.g., ACL/Galvanize, TeamMate+), and data analysis tools such as Power BI, Python, or SQL as well AI/LLM systems and agents (e.g. MS CoPilot, Open AI ChatGPT; Anthropic Claude)
• Demonstrate a high level of integrity, reliability, and responsibility
• Are open to change and new technical developments — adaptive, innovative, and agile
• Have a passion for people, are collaborative, empathetic, solution-oriented, and curious
• Demonstrate ownership, work independently, prioritize tasks, and meet deadlines in a fast-paced and dynamic environment
• Have strong analytical skills with the ability to identify risks, evaluate controls, and provide practical recommendations
• Have strong communication skills in English, with the ability to articulate complex technical concepts in a clear and concise manner
• Are open to travel as required

 

Preferred Qualifications

• Audit & Risk Certifications: CISA (Certified Information Systems Auditor), CIA (Certified Internal Auditor), CRISC (Certified in Risk and Information Systems Control), AAIA (Advanced in AI Audit)
• Security Certifications: CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager)
• Cloud Certifications: CCSP (Certified Cloud Security Professional), AWS/Azure/GCP professional-level certifications
• Data & Privacy: CDPSE (Certified Data Privacy Solutions Engineer)
• AI Governance: Familiarity with AI governance frameworks such as NIST AI RMF or ISO 42001
• Regulatory Expertise: Hands-on experience with DORA (Digital Operational Resilience Act) implementation or compliance assessments
• Professional Background: Experience in a Big 4 or equivalent professional services IT audit practice
• Previous experience in insurance or asset management business functions, consulting, digital / tech is a plus
• Experience applying ChatGPT, Generative AI, and Ethical AI solution

 

 

Do we have what you need?

 

• Flexible and hybrid work model
• Multinational and inclusive community
• Great career development and learning opportunities
• Company pension and health insurance
• Employee stock purchase program with a discount
• Health and well-being offerings
• Supportive family care benefits
• Opportunity to contribute to our sustainability programs
• Great place to work certified

 

And there is much more: Allianz SE Benefits

To learn about our recruitment process: Allianz SE Recruitment Process

Apply before: 24th June- Applications are reviewed on an ongoing basis and we reserve the right to withdraw the posting prior to the advertised closing date. So, if you're interested in this role we encourage you to apply as soon as possible.

In case of questions reach out to Ms. Oksana Antonova: +49 151 4628 7165

 

Welcome to Allianz SE!

We at Allianz SE are recognized as a trusted partner for protecting and growing your most valuable assets, offering a comprehensive portfolio of products, including property and casualty insurance, life and health insurance, and asset management services, tailored to meet the various needs of individual and corporate clients worldwide. From our international headquarters, we orchestrate global operations, set strategic directions, and ensure cohesive implementation across our international subsidiaries. We are committed to innovation and digital transformation, driving initiatives that enhance customer experience and operational efficiency, reinforcing our position as a leader in the financial services industry.

For more about Allianz SE, Click Here.

#StandwithUkraine
#LI-Hybrid

 

People with disabilities:
We want to give all our candidates the best opportunity to succeed. If you need any adjustments to be made during the application and selection process, please email to [email protected]

99252 | Data & AI | Professional | Allianz SE | Full-Time | Permanent

 

To Recruitment Agencies:
 
Allianz SE has an in-house recruitment team that sources great candidates directly. Therefore, Allianz SE does not accept unsolicited resumes from agencies or search firm recruiters.
 
When we do work with recruitment agencies, that engagement is formalized by a contract. Fees will only be paid when there is a contract in place. Without a contract in place, we will not accept invoices on unsolicited resumes, even if the candidate was ultimately employed by Allianz.
 
Please do not contact hiring managers directly.
 
Allianz Group is one of the most trusted insurance and asset management companies in the world. Caring for our employees, their ambitions, dreams and challenges, is what makes us a unique employer. Together we can build an environment where everyone feels empowered and has the confidence to explore, to grow and to shape a better future for our customers and the world around us.
 
At Allianz, we stand for unity: we believe that a united world is a more prosperous world, and we are dedicated to consistently advocating for equal opportunities for all. And the foundation for this is our inclusive workplace, where people and performance both matter, and nurtures a culture grounded in integrity, fairness, inclusion and trust.
 
We therefore welcome applications regardless of ethnicity or cultural background, age, gender, nationality, religion, social class, disability or sexual orientation, or any other characteristics protected under applicable local laws and regulations.
 
Join us. Let's care for tomorrow.