menu

close

close

Start your search

Information Security Risk Consultant

Cardiff

  1. Full time

Closing date

16/04/2021

About the job

Overview
This is a role for an information security risk management expert who will take ownership of risk management processes, as part of the Security Risk and Governance team, reporting to the Governance and Controls Manager.

The Consultant is expected to deliver risk management and advisory services as well as being a lead contact for the Security Risk and Governance team.

The role includes operating and improving the risk management processes to reduce Admiral’s cyber risk exposure to acceptable levels.

The Consultant will engage with IT and business stakeholders to ensure that information risk is effectively quantified and mitigated through the identification and implementation of technical and non-technical controls.

Main Duties

The Consultant will:

  • Be responsible for operating and enhancing the risk assessment and risk management processes. They will establish and maintain information security risk criteria, including risk treatment approaches in line with agreed risk tolerances 
  • Apply the information security risk assessment process to identify risks within the scope of the information security management system and engage with risk owners
  • Analyse information security risks associated with existing IT and business systems and processes, including potential impact and likelihood
  •  Provide recommendations for minimum baseline controls to be implemented and ensure non-conformities are documented and that remediation plans are agreed with risk owners to timelines
  • Produce security documentation as required, including security standards and guidelines
  • Promote continued integration between the risk management, operational and incident response processes, such that knowledge gained from analysing and resolving information security incidents can be used to reduce the likelihood and/or impact of future incidents.
  • Provide consistent and timely engagement with IT and business functions
  • Support the Information Security Culture Team with providing focussed and risk-based training and awareness activities
  •  Act as a champion for information security initiatives and maintain high standards of customer service, integrity and professionalism
  • Maintain a high level of expertise within risk management, governance and compliance with regulatory requirements to be applied to the evaluation and selection of mitigating controls through ongoing training, conferences, seminars etc
  • Deliver risk assessment reports and risk treatment recommendations in a timely and repeatable manner
  • Produce operational and strategic MI, including KRIs, as required
  • Contribute to and maintain an effective risk management mechanism to ensure that Admiral has as accurate and current a view of information risk exposure as possible

Experience and Qualifications Required

The Risk Consultant will have a strong grounding in information security risk management with a strong technical knowledge which includes requirements for cloud-based solutions. A degree education is preferred. A CISA, CRISC, CISSP or similar qualification is highly desirable. A general understanding of security control assessment, risk assessment, risk management and controls is required. Further role specific skills will be developed during employment.

Essential skills

  • Drive to implement improvements and take ownership of issues as they arise
  • Knowledge and experience of using common risk methodologies and information security frameworks
  • Strong technical background, e.g. knowledge of IT controls implementation and management
  • Strong communication skills, verbal as well as written
  •  Previous information security risk management experience

Desirable

  •  CISA, CRISC, CISM or CISSP

Location

Although this role can be performed remotely (UK only), it is highly desirable that the candidate is able to travel to Cardiff on occasion for on-site training, meetings etc.

About Admiral

We're Wales’ only FTSE 100 company. We have forward-thinking approaches and provide endless opportunities to test, learn and grow. There's a reason we've been named a Best Place to Work: our progressive culture, core values, and commitment to diversity and inclusion have created a working environment where people share ideas, aren’t afraid to speak up and change things, and above all, feel valued.

Admiral has grown from being a small start-up into a multi-national organisation. The company is constantly investigating new products, services and markets and is now present in eight countries with a diverse product portfolio.

Our success goes hand-in-hand with having a strong culture where we put our people and customers first. Our philosophy is simple yet effective: people who like what they do, do it better, and this, in turn, means that our customers receive the level of service and products that they deserve. Our culture is honest, open and wholeheartedly focused on four key areas: Communication, Equality, Reward & Recognition, and Fun.

Salary, Benefits and Work-Life Balance

We do not have a set salary for this position, as it will be dependent on the successful candidate’s experience. We are happy to see CVs from all candidates who meet the requirements and will be happy to discuss the remuneration package.

At Admiral, we are proud to be a diverse business where we put our people and customers first. We have great benefits to ensure employees have a great work-life balance; it's one of the reasons we're voted no. 1 in the 2019 Sunday Times Best Big Companies to Work For in the UK. We want you to have an element of freedom to define a working lifestyle that supports this, so accommodate flexible hours wherever possible.

You can also view some of our other key benefits here; https://admiraljobs.co.uk/employee-benefits/.

If you think this role is for you and would like to be considered for this opportunity, please click “apply now” to complete an online application form.

#LI-LP1

jobs

Related jobs

Threat Intelligence Analyst

** DEFAULT listwidget.vacancypartial.salary - en-GB **

** DEFAULT listwidget.vacancypartial.locationfreetext - en-GB **

Cardiff

Job Type

Full time

Department

Information Security

Location

Cardiff

Office address

Tŷ Admiral, David Street, Cardiff, CF10 2EH

Description

The Threat Intelligence Analyst will be working to support specific intelligence types (tactical, operational and strategic) dependent on the tertiary team’s focus within the Threat Intelligence team.

Reference

4654

Expiry Date

12/02/2021

Allison Martin

Vacancy managed by

Allison Martin
Allison Martin

Vacancy managed by

Allison Martin
View Shortlist
Senior Internal Penetration Tester

** DEFAULT listwidget.vacancypartial.salary - en-GB **

** DEFAULT listwidget.vacancypartial.locationfreetext - en-GB **

Cardiff

Job Type

Full time

Department

Information Security

Location

Cardiff

Office address

Tŷ Admiral, David Street, Cardiff, CF10 2EH

Description

Are you tired of being on the road? Fed up with living out of a bag? Spending too much time in the cold aisle? If you are looking for a permanent role outside of consulting, we are looking for a Se

Reference

4681

Expiry Date

26/02/2021

Kate  Williams

Vacancy managed by

Kate Williams
Kate  Williams

Vacancy managed by

Kate Williams
View Shortlist
Senior Threat Intelligence Analyst

** DEFAULT listwidget.vacancypartial.salary - en-GB **

** DEFAULT listwidget.vacancypartial.locationfreetext - en-GB **

Cardiff

Job Type

Full time

Department

Information Security

Location

Cardiff

Office address

Tŷ Admiral, David Street, Cardiff, CF10 2EH

Description

The Senior Threat Intelligence Analyst will drive forward specific intelligence types (tactical, operational and strategic) dependent on the tertiary team’s focus within the Threat Intelligence team.

Reference

4651

Expiry Date

12/02/2021

Allison Martin

Vacancy managed by

Allison Martin
Allison Martin

Vacancy managed by

Allison Martin
View Shortlist
posts

Related posts

Celebrating our 5th Annual Learning & Development Conference

Teaser

Contact Centre

Content Type

Blog

** DEFAULT postresults.publishdate - en-GB **

20/11/2019

Summary

On the 8th of November, our very own Admiral Academy hosted their 5th International Learning and Development (L&D) Conference. Over 150 training professionals came together from all corners of the business to collaborate, share best practise, network and most importantly celebrate success. The day kicked off with the amazing Admiral Inspire Choir and an opening speech from Head of People Services and Head of Learning and Development. David Stevens (CEO) also recorded a personal thank you message to attendees for their efforts in winning the L&D Award at the Best Big Companies to Work for Awards this year!The day included a whole host of talks from managers around the business, with keynote speaker Garan Pieniazek who gave an inspiring talk. The day also incuded talks from our ILM 7 Graduates and Working Groups who have worked incredibly hard throughout the year to deliver current content at this year’s conference.The second part of the day was recognising staff in the business who made a real impact within the learning and development community over the last year.Award Winners from this year’s conference are;Getting To Know Your Learners – Holly: Admiral AcademyDriving Performance – Deepshika: Customer ServiceGuardian of The Culture – Daniel: Admiral AcademyHighly Commended - Excellence in Learning and Development – New BusinessWinner - Excellence in Learning and Development - RenewalsThe L&D Conference and Awards highlights the incredible work of training professionals throughout the business and truly make a difference to the business and staff. Thank you to all and a huge well done!

Teaser

Read on
Laura  Pengilly

by

Laura Pengilly

Laura  Pengilly

by

Laura Pengilly

Changes to our Family Friendly Policies

Teaser

Contact Centre

Content Type

Blog

** DEFAULT postresults.publishdate - en-GB **

06/03/2019

Summary

We understand that balancing the demands of a family and a career can be challenging at times. Taking time off work to be with your new family is very important and we recognise that many fathers, partners and adopters want to be more hands on and involved with the care of their children. We are committed to supporting our staff when they go through parenthood and a valued source of support is provided by our Parental Leave policies. The policies allow staff to spend cherished time at home with their family, so that when they return to work, they can thrive and flourish.   Our policies go above the statutory pay requirements to encourage our staff to take more time at home when they become parents. As long as you've worked for us for 26 weeks, you can expect the following benefits. Maternity LeaveEmployees receive 16 weeks of full pay, followed by 23 weeks statutory maternity payPaternity LeaveEmployees receive 2 weeks full pay, 2 weeks statutory paternity pay and 12 days of unpaid leave (should they wish to take it)Shared Parental LeaveWhen both parents work for Admiral they can share the 16-weeks full pay benefit. So, if the mother/primary caregiver decides to return to work prior to 16 weeks, the other parent can pick up the remaining weeks on full payIf one parent is employed by Admiral, and together with their partner fulfil eligibility criteria, they can share the Parental LeaveAdmiral believes that the support doesn’t stop at Parental Leave. We recognise that flexible working is another valuable way in which our staff can attain the work-life balance they need and so employees can request flexible working arrangements.Our employee benefits don’t stop here, take a look at our top 7 perks for working at Admiral.

Teaser

Read on
Alexandra  Dobbie

by

Alexandra Dobbie

Alexandra  Dobbie

by

Alexandra Dobbie

Welsh Data Science Graduate Programme - What to expect!

Teaser

Graduates and Students

Content Type

Blog

** DEFAULT postresults.publishdate - en-GB **

14/11/2018

Summary

Kieran, a grad on the Welsh Data Science Graduate Programme chats to us about his first week and placement here…  We’re so proud to be one of 13 Welsh companies to get involved in the Welsh Data Science Graduate Programme, which encourages top talent to build their careers in a growing data science sector in South Wales.“We are delighted to play a part in the South Wales Data Scientists Graduate Scheme'', said Business Analytics Manager, Sarah (pictured above). “Initiatives like this allow us to develop and keep talented individuals in South Wales and Admiral.” We chatted with Kieran to learn more about the programme, his experience so far and what he’s going to get involved in during his time at Admiral.What is your educational background?‘’I completed a physics degree at Cardiff University (I’m originally from Bath) and now I’m doing an MSc in applied data science, which is funded through the Welsh Data Science Graduate Programme.’’How did you find yourself on the Welsh Data Science Grad Scheme and what exactly does it involve? I applied like you would with any normal job role; it’s a 2-year course and I’ll complete three 8-month rotations with three different companies. On Fridays I am in USW completing various academic units and Monday to Thursday I’m here at Admiral working on a work-based project. What will you be doing here at Admiral?‘’I’m working with Claims Analytics – quite a small team but growing quickly. With the company seeing the value in data science, this is a big area of focus. I’m currently training in SAS and looking to start my project soon, which will involve working with the department at minimising the number of open claims that will have a predicted £0 paid value.’’How are you using your data science degree?‘’I’m using all skills gained from my data science degree as well as using a machine learning model to assess current data for future predictions.’’How are you finding it so far?‘’I’m enjoying it; I’ve never worked in an office environment before – I like it, it’s very relaxed, everyone on the team is friendly and willing to help out. I was recently part of a big solutions meeting and it was good to see how everyone shared the problems they had, and different teams presented different solutions. It was nice to see people taking others advice and working collaboratively.’’Do you have any advice to anybody thinking about doing the same programme?‘’Data science in Wales is booming with so many companies expanding to account for this new area of focus.For me, it was about taking my scientific degree into commercial environment, which can be hard to do with physics degree because of its academic focus. You have to have to find something to make it adaptable in a business environment.There’s room for every science degree to fit into data science, it’s just finding a way to commercialise it and the Welsh Data Science Graduate Programme is a great way to do this.’’You can find out more and stay up to date with similar opportunities through following the Graduate Programme Wales on LinkedIn.You can also follow us on LinkedIn for graduate and data science opportunities.

Teaser

Read on
Emily  Bonney

by

Emily Bonney

Emily  Bonney

by

Emily Bonney

Our Benefits

As one of our four pillars to our culture, Reward and Recognition is extremely important. We believe that happy staff make happy customers, so we have a huge range of great benefits to make sure everybody has something to smile about! Here are a few of our more popular ones.

Share
Schemes

Flexible
Working

Local
Discounts  

Travel Season
Ticket loans

Groups
& Societies 

Development 
Opportunities

View more benefits