Specialist: Incident Management & Investigations

The Regional Security Office APAC-MEA (RSO APAC-MEA) protects people, places, and intangible assets including information, within its geographical and organisational scope. The position "Specialist: Incident Management & Investigations" is part of the RSO APAC-MEA. This team is looking for a principal governance lead on investigations in support of the RSO.

What Awaits You:

• Principal lead on security relevant investigations and its governance aspects across the Regional Security Office with focus on issues associated with crime. Assist Heads of RSO sub-regions and Regional Security Manager in the conduct of sensitive investigations.                                                           
• In support of the RSO and in alignment with PA/PI Cooperation Agreement 2.0 (effective as at 01OCT2024), downflow of investigations related governance to PI security operated BMW Places.
• Assist business and PI-640 in the conduct of investigations. Ensure that the conduct of investigations and the documentation and communication of investigative activities are technically and regulatory compliant with standing BMW corporate security premises.                                                                  
• Conduct incident management including capturing of incidents, root cause analysis, security risk management adjustments and quantitative and qualitative incident analysis as tasked by Head of PA-S-AP-3. Maximise capabilities of CSIM appliances and systems.                                                          
• Execute functions of security 'country champion' in collaboration with local security coordinators and if required information protection delegates as tasked by Head of PA-S-AP-3.                                           
• Assist audit activities with focus on information protection needs, compliance aspects (AC), and revision (AZ). Assist in identifying adequate measures and required resources to respond to audit findings (OFIs / NCs). Assist business with preparatory timely measures to engage in audit activities that include aspects of incident or broader security risk management topics.                                 
• Cooperation with group security (PA-S-2) specialists in the discipline of investigations, both in a push/pull mode.
• Commitment to security technology digitalization, artificial intelligence and task automisation.          
• Preparedness to travel, region-wide. Preparedness to work non-routine hours as situation dictates. Commitment to multi-rolling and country champion models, taking on alternative core security topics directed by Head of PA-S-AP-3.         
• To assist the (Senior) Manager Security MEA, Russia with incident management in the subregion. The position holder works closely with and through the designated central function point of contacts for Corporate Security Incident Management. Conducts regular visits across the market to assess the facilities and monitor the Importer’s performance.

What should you bring along?

• Bachelor or Masters degree desirable, or equivalent (cross-mapping of other educational achievements).
• Exemplary specific qualifications (desirable): ISO/IEC27001; ISO31000; ISO18788; ASIS CPP, ASIS PSP; NEBOSH.
• Exemplary general qualifications (desirable): Axelos PRINCE2; Axelos MSP; PMI-PMP; ISO 9001, Google Digital Professional Certifications, MS Certified Digital Literacy or ICDL / ECDL - International Certification of Digital Literacy.
• 4-6 Years Full-time employment in private or corporate security, preferably with OEM (mandatory).         
• 1-3 Years Full-time employment in for-profit, corporate environment, preferably with OEM (mandatory).
• 1-3 Years Full-time employment in management or business consulting (desirable).     
• SME in the discipline of security risk management with emphasis on investigations and incident management, as well as contracting and steering of external security service providers (e.g. man-guarding companies or technical security consultants).
• Understands, applies, optimizes necessary balance between physical security and other applicable security risk management premises, and the needs of business, with factor cost in mind.
• IT literacy and digital native, demonstrated comfort with modern digital tools and processes, including basic use of automation platforms (e.g. Microsoft Power Automate, Zapier) and familiarity with AI-powered tools (e.g., ChatGPT, Microsoft Copilot, Grammarly) to improve daily productivity and workflows.                                     
• Committed team-player ("team-of-teams", "one mission" approach). Proven ability to plan, design, instruct, tutor. Keen, continuous learner. Motivated self-starter, force multiplier, driver of change.
• Intercultural competence, social-emotional intelligence. Ability to interact, collaborate, negotiate with senior-level stakeholders within and outside the organisation effortlessly, both vertically and horizontally. Ability to design content, prepare and conduct presentations to senior target audiences.                                                            
• Project and/or programme management (recognised qualification or certification desirable).     
• Practical experience in designing, planning, coordinating and leading on security risk management operations, including close protection details and journey management, in extreme risk locations, in the Middle-east or Africa.
• A highly pronounced degree of corporate environment situation awareness, diplomacy and sensibility, in order to achieve set targets effectively and efficiently in the best interest of a for-profit business. Position requires an outstanding level of personal and professional integrity, trustworthiness, credibility in order to gain acceptance from business leaders.
• An agile, 'future ready' adaptable individual who can be successful in spite of global systems and technological complexity. Able to understand and  work in harmony with data, digitalisation and AI to perform a greater range of tasks, expanding roles of pure security functions. One that can both think in a security context yet operate and execute digitally.                                               
• English language --- Common European Framework of Reference for Languages proficiency level C2 (Mastery) / C1 (Advanced).

Enjoy working in an international team? Apply Now!

BMW Group SA is committed to creating and maintaining a diverse, inclusive, and equitable working environment, in line with the Employment Equity Act and our internal Employment Equity Plan. We encourage applications from all suitably qualified individuals, including those from designated groups as defined in the Employment Equity Act.

Closing Date: 18 June 2026.