We have a security leadership role to fill within our Information Security Department.
The Head of Security Consulting & Assurance role is a senior Information & Cyber security management position in the organisation, responsible for ensuring that we deliver world class security consulting & assurance to enable our business objectives. You will be a player manager – respected for your knowledge and ability in technical and strategic areas. Your vision will define and drive how the function will meet the business demand to deliver at pace, safely. We are a cloud based scaled agile environment thus experience with SAFe is highly desirable.
Location: We are open to discussion around remote working possibilities (UK only)
About the team
The security consulting & assurance capability has several services including application security consulting, security testing & vulnerability management, 3rd party risk assessment, security solution architecture, governance and assurance. The function has been improving its level of maturity & capability and now requires an experienced information security leader to set direction and to deliver ongoing improvements with the aim to deliver world class security which will support the business to transform.
Job Purpose
This role is responsible for delivery of all information security consulting, security testing and vulnerability management, security assurance etc for the Admiral UK Insurance business (EUI).
They will also be responsible for setting development of information security standards with other members of the Security Leadership Team and will be expected to lead the governance and risk management discussions with reference to organisation context.
Main Duties
The Head of Security Consulting & Assurance will:
- establish information security roles and responsibilities for Admiral UK Insurance employees and third-party stakeholders
- provide the business with a clear understanding of their issues and risks and what they can do to improve
- be responsible for the overall operation and management of risk management processes, including supply chain risk management and contract security schedules
- maintain a current understanding of the vulnerability and risk exposure of the organisation
- support new business and IT initiatives by providing expert security consultancy at all levels of delivery, supporting Admiral’s Scaled Agile Framework
- ensure compliance with Admiral’s legal and regulatory information security obligations, maintaining focus on FCA and PRA requirements
- translate technical risks into meaningful business information with comprehensible and proportionate risk treatment instructions
- schedule periodic and ad hoc technical and non-technical security reviews, providing oversight and approval of remediation initiatives
- establish and communicate priorities for organisational mission, objectives, activities and set cybersecurity policy
- develop a highly skilled and motivated team.
Experience and Qualifications Required
The Head of Security Consulting & Assurance will be an experienced information security leader, well versed in helping the business manage information & cyber risk from C-Level through to technology delivery and support teams, be familiar with industry recognised information security control sets, risk management methodologies.
Essential skills
- Prior experience of security testing, business security consulting is essential
- Experience in delivering enterprise security architectures
- Experience of delivering into and security cloud environments e.g., GCP, Azure, AWS.
- Experience of security testing, threat modelling, security architecture
- Demonstrable track record in delivering effective information security management improvement initiatives in large regulated corporate environments
- Strong focus on DevSecOps
- Strong business enablement ethos built on good technical knowledge of security, with the ability to demonstrate practical application of controls
- Strong attention to detail, with excellent analytical skills
- Ability to communicate constructively and confidently and work well with others
Desirable
- Have a background in high assurance environments e.g. banking, pharma, government.
- Degree in a technical discipline
- CRISC, CISM or CISSP
Applications will be reviewed weekly and if shortlisted, we will interview you for a first interview on the following week.
Salary, Benefits and Work-Life Balance
We do not have a set salary for this position, as it will be dependent on the successful candidate’s experience. We are happy to see CVs from all candidates who meet the requirements and will be happy to discuss the remuneration package.
At Admiral, we are proud to be a diverse business where we put our people and customers first. We have great benefits to ensure employees have a great work-life balance; it's one of the reasons we're consistently voted one of Sunday Times Best Big Companies to Work For in the UK. We want you to have an element of freedom to define a working lifestyle that supports this, so accommodate flexible hours wherever possible.
You can also view some of our other key benefits here; https://admiraljobs.co.uk/employee-benefits/.
Our Commitment to You
At Admiral, we are committed to being a diverse and inclusive workplace. Admiral is proud to be an equal opportunities employer and does not discriminate on the basis of race, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), national origin, gender, gender identity, sexual orientation, disability, age, or any other legally protected status.
All qualified applicants will receive equal consideration for employment.
If you think this role is for you and would like to be considered for this opportunity, please click “apply now” to complete an online application form.
#LI-VG1
