Chief Information Security Officer - Global Insurance Group

About Our Client

A leading global insurance group comprising distinct businesses covering various Insurance and Reinsurance service offerings across a well established international customer base. This is a highly compelling Insurance brand with a rich

history and deep expertise operating across Lloyds, UK, European and global markets.

This role presents a rare and exceptional opportunity looking for a technical and strategic CISO who has years dealing with board, risk committee, regulators and senior level business unit leaders. Someone able to provide technical InfoSec expertise across the group and build out the security function to deliver the right strategy and management of risk appetite.

Job Description

The Chief Information Security Officer will define the information security strategy in collaboration with the regulated entities for the UK and continental Europe and guide on cyber risk appetite.

Recommend appropriate infosec investments and practices, including full support in relation to third parties data/cyber incidents and insurance services supply chain.

Direct the implementation and monitoring of information security technologies, systems, standards and policies. Responsible for proactively managing all type of risks (people, processes and technology) relating to data protection (e.g. GDPR), privacy, information/cyber security, physical security, business continuity planning, crisis management and incident response, compliance and independent assurance of IT Controls.

What You'll Spend Your Time Doing

Define and implement enterprise security strategy and cyber risk policies and standards

Co-ordinate with stakeholders to align enterprise security and risk strategies with business priorities

Ensures the provision of services and capabilities for the protection of all our assets globally

Oversee, manage and report any activity in relation to data protection, privacy and independent assurance of IT controls

Monitor regulatory compliance and security policies to educates business unit leaders and service managers on compliance efforts

Lead an experienced enterprise team that provides global coordination and oversight of business unit Information Risk Management processes and strategies

Oversees development of an information security awareness program for each business unit and services group

Support the implementation of operational resilience across the business

Keeps abreast with evolving threats/risks, industry trends and works to implement best practices

Proactively support audit and regulatory inquiries and external vendor activities. Participates in leading industry forums and consortiums (e.g. Lloyd's of London).

The Successful Applicant

A proven Chief Information Security officer or Information Security Executive with a track record advising and delivering effective and risk balanced information security services within a global or matrix highly regulated organisation (e.g. Financial Services, Banking, Insurance).

• Applicants should have experience in dealing with Board, risk committee, regulators and operational leaders in complex stakeholders environment
• Preferably having worked in a Shared, Group or Consultancy Services organisation.
• A proven track record and approach to building an effective information security function including risk management, privacy and Data Protection practices
• Technical expertise well versed regulatory compliance frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS
• Adept in strategic planning, budgeting, and allocation
• Bachelor's or master's degree in computer science, business, finance or related discipline

What's on Offer

Competitive Basic Salary

Annual Bonus

Flexible and Rewarding Pension up to 18% contribution

28 days annual leave + buy / sell option

PMI, Flex Fund, Life Assurance

Hybrid Working London, City Office.