Online since 1999 | 9,603 IT Jobs Live NOW

Information Security Assurance Consultant - Insurance

Premium Job From Michael Page
Recruiter: Michael Page
Listed on: 24th June
Location: Reading
Salary/Rate: £50,000 - £60,000
Type: Permanent
Start Date: ASAP

This job has now expired please search on the home page to find live IT Jobs.

Collaborate with stakeholders to identify, assess and treat internal and third party information risks

Manage and mentor Lead Information Security and Risk Analysts

Client Details

Opportunity to work for a leading UK insurance provider, driving assurance and compliance within information security.

Description

Information Security Assurance Consultant - Insurance

What would you be responsible for in this role?

    • Collaborate with stakeholders to identify, assess and treat internal and third party information risks; tracking the risks and the associated controls.
    • Manage, develop, and maintain the information risk register, information asset register, and support continuous improvement and maturation of information security risk management processes
    • Manage and mentor Lead Information Security and Risk Analysts
    • Provide advisory support to business function and IT teams in understanding risk and security considerations of business operations, new projects, and third party suppliers.
    • Ensure that the security requirements for new and change business projects are defined, based on the assessment of risk within the framework provided by Group Policy
    • Assist IT teams in defining and executing action plans to implement controls
    • Monitor compliance with the agreed controls regularly
    • Contribute to the definition and maintenance of a practical and comprehensive Risk Assessment methodology, with supporting tools where appropriate
    • Control and manage assurance monitoring and tracking, including the retention of adequate records.
    • Schedule information risk and compliance audits, review the outcomes audit process; direct compliance issues to appropriate resources for investigation and resolution
    • Ensuring IT and Information Security risks are captured and articulated and that appropriate controls assurance, compliance and reporting activities are conducted to enable effective identification and management of related issues and exceptions
    • Ensuring reviews of IT and information risk controls are undertaken, oversee related remedial activities and make recommendations to management to make IT and information security controls more robust

Profile

Information Security Assurance Consultant - Insurance

We're looking for an experienced Information Security and Risk professional with experience in the following areas: Information Security, IT Audit, supplier security assessments, working within a control framework.

    • Risk Management Framework experience (IRAM, CRAM etc.)
    • Experience of Policy and Standards writing and management
    • Knowledge of security related products, Information Security Management Systems and security / risk strategies
    • Proven information security and cloud based systems risk management experience.
    • Experience of security controls both within cloud environments and on premise.
    • Experience in the following areas: Information Security, IT Audit, supplier security assessments, working within a control framework
    • Strong knowledge of ISO series of standards, PCI DSS and GDPR
    • Knowledge of Cybersecurity Frameworks such as CIS Critical Security Controls, OWASP, Cloud Security Alliance etc.
    • Good knowledge and understanding of software development lifecycle and its implications on BAU service.
    • Have excellent relationship management skills and able to influence business and IT stakeholders.
    • Ability to learn quickly and apply risk/control considerations, whilst being mindful of business process impact.

Job Offer

Information Security Assurance Consultant - Insurance

Reading

Offering a competitive base salary