Germany’s insurance sector faces growing cyber threats, complex IT environments, and strict regulatory demands, making cybersecurity leadership essential. CISOs in this industry oversee sensitive data, manage operational risk, and ensure compliance with frameworks like VAIT and DORA. The leaders featured here guide major German insurers, integrating information security into enterprise risk management and digital transformation, demonstrating how the industry balances resilience, innovation, and regulatory alignment.
Rudolf Rönisch — Chief Information Security Officer, SDK Gruppe
Rudolf Rönisch is Chief Information Security Officer at SDK Gruppe, where he serves as the designated Information Security Officer in accordance with BaFin’s VAIT requirements. Alongside his CISO responsibilities, he has been Group General Counsel and Head of Legal and Staff Units since 2014, as well as Chief Compliance Officer since 2019. His remit spans insurance supervisory law, corporate and capital markets law, compliance, data protection, and IT-related legal matters. This combination of roles places him at the intersection of cybersecurity governance, regulatory compliance, and legal oversight within the organization. Rönisch’s responsibilities reflect the integrated nature of security, compliance, and legal accountability in regulated German insurance environments, where information security is tightly coupled with supervisory expectations and enterprise-wide risk management.
Andreas R. Borchert — Chief Information Security Officer, SIGNAL IDUNA Gruppe
Andreas R. Borchert is Chief Information Security Officer at SIGNAL IDUNA Gruppe, responsible for establishing and operating the group’s second-line information security function for its German insurance entities. His role includes defining and managing the group’s information security framework, overseeing IT governance and compliance, coordinating internal and external audits, and providing governance for Identity and Access Management. Borchert is also accountable for IT risk management with the objective of strengthening operational resilience and regulatory alignment. With more than 25 years of experience across IT operations, cybersecurity, and leadership roles, he focuses on translating complex regulatory requirements into practical, operational security structures that support secure digital transformation while maintaining strong governance and audit readiness.
Fabian Topp — Chief Information Security Officer, Allianz in Deutschland
Fabian Topp serves as Chief Information Security Officer for Allianz in Germany, leading information security teams and technical security support across the German Allianz entities. Prior to this role, he spent over eight years at Allianz Technology, including more than six years as Chief Information Security Officer. His previous responsibilities also included serving as Global Head of Security and Resilience, covering corporate information security, protection and resilience, and identity management governance. In these roles, he was responsible for information security, risk management, audit coordination, data privacy, and compliance across a large, internationally distributed organization. Topp’s background reflects extensive experience in building and leading security organizations within complex, highly regulated insurance and financial services environments.
Jochen Friedemann — Chief Information Security Officer, Talanx
Jochen Friedemann is Chief Information Security Officer at Talanx, where he also leads Group Business Continuity Management and ICT Risk Control. He has held multiple senior roles within Talanx and HDI AG, including Chief Information Security Officer, Head of Consultation for Operational Risk Management, and Head of Qualitative Risk Management. His career within the group spans more than a decade and includes responsibilities across operational risk, ICT risk, and enterprise risk management. Friedemann’s background demonstrates a strong integration of cybersecurity, business continuity, and risk governance, reflecting the close alignment required between security leadership and enterprise risk functions within large insurance groups.
John Schramm — Global Head of IT Risk and Security, Munich Re Group
John Schramm is Global Head of IT Risk and Security at Munich Re Group, where he is responsible for the design, deployment, and operation of large-scale information security and technology risk programs. His work focuses on managing information security and technology risk within a global financial services context. Schramm brings extensive experience in financial services security, technology risk management, mobile computing, emerging technologies, and enterprise information risk strategy. In his role, he supports the organization’s broader risk management objectives by aligning security programs with business and operational requirements across a complex, multinational environment.
Daniel Krüger — Head of Cyber Risk Insurance, R+V Versicherung
Daniel Krüger is Head of Cyber Risk Insurance at R+V Versicherung, where he leads the cyber risk insurance function. He previously worked as a Cyber Risk Underwriter within the organization, building experience in assessing and managing cyber risk from an insurance perspective. His professional background includes formal training in insurance and finance, with a focus on cyber risk-related products and underwriting. Krüger’s role highlights the growing importance of cyber risk as an insurable exposure and the increasing overlap between cybersecurity expertise and insurance product development within Germany’s insurance sector.
Cybersecurity Leadership at the Intersection of Regulation, Risk, and Insurance Operations
Cybersecurity leadership in German insurance extends far beyond technical controls, encompassing regulatory compliance, operational resilience, enterprise risk management, and cyber risk transfer. The leaders featured here reflect how security roles within insurers are deeply embedded in governance structures and supervisory expectations. As regulatory pressure and cyber risk exposure continue to increase, these CISOs and security leaders play a critical role in shaping resilient, compliant, and risk-aware insurance organizations across Germany.