Cyber Risk Advisor EMEA

Cyber Risk Advisor – EMEA region

Location : multiple locations in Continental Europe or Middle East region

AIG is a leading global insurance organization with 100 years of experience. AIG member companies provide a wide range of property casualty insurance, life insurance, retirement solutions, and other financial services to customers in more than 80 countries and jurisdictions. These offerings help businesses and individuals protect their assets, manage risks and provide for retirement security.

General Insurance is a leading provider of insurance products and services for commercial and personal insurance customers, with a broad range of products offered through a diversified, multichannel distribution network.

The Cyber Risk Advisor acts as a subject matter expert for cyber risk and threats and provides knowledge and support across AIG cyber offerings related to cyber risks, threat landscape, and cyber security controls and processes. This role works with regional and country leaders to determine strategy, areas of focus, and guides the team in delivering advisory support to enable the business to meet and exceed results. This role evaluates, recommends, negotiates with external Partners, provides expertise and skills transfer to internal AIG key resources, interfaces with external parties to alert on existing high-risk vulnerabilities, develops and delivers selected loss control services, presents to large audiences on AIG cyber strategy and approach, and performs business development activities.

The Cyber Risk Advisor will directly lead and contribute to the achievement of AIG Cyber global financial goals and ransomware-specific coverage strategies.

• Evaluate the existing risk controls that shield assets: infosec tools, legal contracts, insurance policies. Identify gaps where perils and vulnerabilities could cause unanticipated losses and liabilities. Provide cyber advisory service to improve the risk quality of accounts.
• Quantify the probability and severity of potential direct and indirect impacts (e.g., liabilities, fines, interruptions, corruptions, opportunity costs, contingent impacts to others).
• Develop and maintain security subject matter expertise.
• Envision and help develop new insurance and cyber risk-service offerings for existing clients. Devise remediation plans for new cyber clients and industry groups.
• Expand AIG's offering to encompass all aspects of risk management: how to avoid, prevent, mitigate, legally transfer, and financially insure new and emerging risks discovered in engagements.
• Present high-level risk reviews and analyses to executive committees, industry leaders, privacy regulators, and national-security organizations.
• Collaborate with other business leaders to determine what underwriting teams and brokers require additional support in cyber security education, thought leadership, and sales training around service offering; lead the team in delivering this support.
• Investigate and evaluate existing and new ways to revise and improve the cyber risk engineering process.
• Research, identify, evaluate, select, and negotiate with Partners to expand the value-add services AIG brings to cyber risk management.
• Ensure the team identifies areas of weakness within applicant or renewing clients’ controls and work with internal and external resources to create solutions to improve clients’ risk profile.
• Conduct cyber risk advisory services and work with vendors and internal engineers to deliver fee-generating services.
• Provide key analytics to AIG's client base.
• Lead the completion of all Cyber Claims Taxonomies for the countries assigned for all cyber claims, capturing metadata on Actor, Action, Attribution and Assets.
• Develop talent and processes for the alerting process leveraging existing tools and capabilities to identify and help remediate existing high-risk vulnerabilities.
• Educate clients, applicants, brokers, and underwriters on the alerting process.
• Assist with product launches and public speaking engagements.
• Develop thought leadership materials related to cyber security.
• Experience working in or with Incident Management teams will be viewed favourably.

• Bachelor's Degree, ideally in Engineering or similar fields
• Strong Technical Cybersecurity expertise focused on key risks notably ransomware tactics, techniques and procedures
• Consulting or Technology consulting experience is a plus
• Excellent cyber risk advisory skills to help clients improve their cyber risk profile and achieve a better security posture.
• Excellent understanding of the global cyber threat landscape and emerging risks such as Artificial Intelligence, cloud security and quantum computing
• Partner experience
• Penetration Testing and / or Forensic Investigation Skills
• Business Development experience preferred
• Demonstrable experience with investigative tools
• Fluent in English and French: excellent Written and Oral Presentation Skills in English and French since this is a strong client-facing role. Proficiency in other languages will be advantageous
• We are an Equal Opportunity Employer

It has been and will continue to be the policy of American International Group, Inc., its subsidiaries and affiliates to be an Equal Opportunity Employer. We provide equal opportunity to all qualified individuals regardless of race, colour, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories. At AIG, we believe that diversity and inclusion are critical to our future and our mission – creating a foundation for a creative workplace that leads to innovation, growth, and profitability. Through a wide variety of programs and initiatives, we invest in each employee, seeking to ensure that our people are not only respected as individuals, but also truly valued for their unique perspectives.

AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities. If you believe you need a reasonable accommodation, please email us.

Functional Area : UW - UnderwritingAIG Europe S.A. (Spain branch)