Cyber Services Manager

Over the past three years Canopius has built a market-leading, differentiated Proactive Cyber Services function, and client demand has grown rapidly. We're now looking for an experienced cyber professional either from a similar role within an insurer or from a cyber security consultancy / vendor environment, who's ready to take ownership of the global strategy and scale our offering to the next level.

This role sits within our Insights & Analytics function, alongside our cyber analytics and incident management capabilities. We believe insurers are uniquely positioned to help clients reduce cyber risk, as part of the insurance lifecycle we get access to a unique data set: application and underwriting data, real-world incident learnings (including attacker techniques), and financial impact. We combine this with paid and open-source threat intelligence and outside-in scanning to deliver services that are practical, measurable, and genuinely valued by CISOs and security teams.

You'll lead and evolve our proactive services roadmap, building scalable products and client programmes while protecting what makes our proposition differentiated. You'll also play a key role in partnering with underwriting: translating threat and exposure insights into stronger risk selection, guidelines, and improved loss performance.

Strategy & leadership

• Own the global vision, roadmap and operating model for Proactive Cyber Services-balancing scalable delivery with high-impact differentiated offerings.
• Lead, develop and mentor a high-performing team; set clear priorities, ways of working, and performance measures.
• Collaborate as a key stakeholder across the cyber business, aligning priorities with Insights & Analytics, Incident Management/Response, Underwriting and Claims.

Threat intelligence & Risk insight

• Build a comprehensive threat and risk intelligence capability using open-source and premium intelligence, outside-in scanning, incident response insights, claims learnings, and internal risk data.
• Serve as our internal expert & lead on cyber risk drivers, areas of potential compromise across technology, human behaviour, and procedural controls.
• Determine which exposures present the highest priority for insureds by evaluating threat actor behaviours, recurring incident patterns, vulnerability data and indicators across their full exposure footprint

Service development & client impact

• Leverage practical learnings from threat activity and incident outcomes to shape proactive solutions that strengthen clients' security posture, including exposure-focused programmes, advisory materials, assessment activities and preparedness support.
• Design and deliver client-facing services such as tabletop exercises, security awareness sessions, threat/risk reporting and targeted remediation guidance.
• Create repeatable client services that quantify cyber security posture and drive remediation of material exposure
• Advise senior client stakeholders (including CISOs) on best practice, emerging threats, and pragmatic risk reduction strategies.

Underwriting partnership & insurance value

• Partner with Underwriting and insights & Analytics leadership to embed risk and threat insights into underwriting guidelines, portfolio strategy and loss prevention initiatives.
• Support development of data-informed underwriting tooling and approaches, including collaboration on pricing model inputs and risk signals.
• Provide technical expertise to enhance underwriting risk assessments and support complex referrals.

Data, metrics & continuous improvement

• Partner with data engineering and analytics to productionise exposure/incident datasets for analytics, services, underwriting and workflow automation
• Define and oversee outcome-based metrics that demonstrate insured cyber risk

Vendor & ecosystem management

• Collaborate with cybersecurity vendors and partners to extend our service suite, evaluate tooling, and ensure high-quality delivery for insureds.
• Select and manage outside-in scanning and threat intelligence solutions, ensuring they support measurable outcomes and a strong client experience.

Thought leadership & communication

• Represent the function publicly; publish analysis on evolving threats and pragmatic risk reduction approaches tailored to our insureds
• Support education across the business on emerging risks, claims learnings and exposure trends.

Skills and experience:

• Strong verbal and written communication skills, with the ability to simplify technical concepts for non-technical audiences.
• Proven experience in presenting and communicating complex information.
• Ability to absorb complex technical information or data analytics, and effectively translate it into clear, actionable insights for non-technical stakeholders, ensuring alignment and understanding across diverse audiences.
• A good relationship builder that nurtures relationships with internal and external stakeholders through timely outputs, clear communication, and high-quality delivery.
• A collaborative personality who is comfortable engaging with diverse stakeholders across the business.
• A demonstrable passion for cybersecurity and an interest in staying up-to-date on emerging threats and trends.
• Familiarity with data analysis tools like Python, SQL, or business intelligence platforms to support data-driven insights and threat intelligence development.
• Familiarity with cybersecurity frameworks, data privacy regulations, and frameworks.
• Familiarity with the MITRE ATT&CK framework and common cyber security concepts across controls, attack surfaces and defensive strategies.
• Exposure to cybersecurity tools and technologies, such as outside-in scanning solutions, threat intelligence platforms, or other cybersecurity products.
• Proactive and detail-oriented with a passion for exploring emerging threats and trends.

Canopius Competencies:

Leading Change

Plans, implements and embeds organisational changes across the region and guides stakeholders through changes to processes, technologies, systems, or strategies, ensuring changes are successful and well received.

Leading Teams

Motivates, guides and empowers others to collectively meet current and future business needs. Sets clear performance expectations and utilises team members' capacity, skills and potential effectively.

Stakeholder engagement

Cultivates and maintains positive relationships with relevant internal or external stakeholders, effectively involving and communicating with them to drive collaboration, support, and alignment towards shared goals.

Collaboration and teamwork:

Works effectively with team, project or other work groups or those outside formal line of authority to accomplish goals. Actively participates as a member of a team; develops and builds cohesive team relations to produce required outputs; possesses knowledge and understanding of colleagues work.

Adapting to change:

Adjusts thoughts, feelings, and behaviours to handle new, challenging, or complex situations; embracing change as a growth opportunity when working within new work structures, processes, regulations, or requirements.

Continuous Improvement

Analyses current and future state business requirements and identify strategies to continuously improve products, services or processes. Guide and inspire others to achieve results to enhance efficiency, quality and consistency.

Innovation

Creates, develops and implements new ideas to enhance new or improved processes, systems, solutions, products or services; tries different and novel ways to deal with problems and opportunities.

Resilience

The ability to cope with and recover from setbacks, challenges or difficulty. Persevering even under pressure or crisis situations and uses ways that foster strength and growth, often emerging stronger than before.

Future Focused

Anticipates changes in regulations, technology and client needs, proactively responding to key trends happening in the industry. Thinks about the future through identifying opportunities and obstacles whilst planning effectively.