- Lead and support ISO27001 Implementation with the support from team members
- Lead the creation, development and adoption of policies and standards within an organisation
- Provide interpretation of the Information Security standards to support complex decisions or those which set new precedent.
- Manage on the information security management framework and supporting risk framework and exception process
- Support the ECG Manager in developing and delivering the information security strategy and yearly plan
- Support the ECG Manager in developing and delivering information security reporting processes and formats
- Create and Implement procedures as necessary to comply with the Group security policy
- Act as a Liaison where required to the Group, other Operating Countries and external bodies
- Maintain the Information Security's service catalogue
- Support the business monitoring and governance of adherence with the organization's information security policies and procedures.
- Support the production of management information, metrics and trends for Information Security
- Monitor and respond to changes in legislation, accreditation standards and frameworks that affect information security including reporting on how these may impact Ageas
- Assist in Information Security incidents as required, and where necessary, support Compliance and HR investigations into data breaches or systems misuse.
- Proactively share good practice and expertise with communication style to suit audience, developing effective mechanisms to disseminate information to colleagues.
- ISO27001 Implementation
- Demonstrable ability to design compliance frameworks, develop policies, procedures and assurance activities
- Experience working at similar work level for a minimum of five years in Information Security or a related subject area.
- Strong communication skills both verbally and in writing with good questioning and listening skills in order to identify customer requirements, whilst informing staff of progress and results by use of meetings and presentations. Ability to explain complex IT concepts to all levels of customer.
- Experience of a related business environment
- A sound understanding and practical experience of Information Security processes, policies and tools.
- Proficient in Microsoft Office applications
- Background in CISM, CISSP, knowledge of Data Protection / GDPR, Information Security Forum, CiiSec
- Understanding of information security controls in particular those relating to business process, governance, risk and education
- Understanding how policies and standards impact operations and balancing security needs with operational reality.
- Flexible Working - Smart Working @ Ageas gives employees flexibility around location (as long as it's within the UK) and, for many of our roles, flexibility within the working day to manage other commitments, such as school drop offs etc. We also offer all our vacancies part-time/job-shares . We also offer a minimum of 35 days holiday (inc. bank holidays) and you can buy and sell days.
- Supporting your Health – Dental Insurance Health Cash Plan, Health Screening, Will Writing, Voluntary Critical Illness, Mental Health First Aiders, Well Being Activities – Yoga, Mindfulness.
- Supporting your Wealth – Annual Bonus Schemes, Annual Salary Reviews, Competitive Pension, Employee Savings, Employee Loans.
- Supporting you at Work - Well-being activities, yoga, mindfulness sessions, Sports and Social Club events and more.
- Benefits for Them – Partner Life Assurance and Critical Illness cover
- Get some Tech – Deals on various gadgets including Wearables, Tablets and Laptops.
- Supporting you back to work - Return to work programme after maternity leave
Information Security Risk and Governance Officer - Chandler's Ford, United Kingdom - Ageas UK
2 weeks ago
Description
Job Title: Information Security Risk and Governance Officer
Contract Type: Permanent – (Fulltime, Part time, Job-Share, Flexible working options available)
Salary Range: £41,600 – £62,400
Location: Eastleigh - hybrid working
Work Level: 4
Information Security Risk and Governance Specialist: Are you passionate about safeguarding the future and mitigating risks? Do you possess a deep understanding of governance frameworks and excel at developing robust risk management strategies? If so, we have an exciting opportunity for you to join our team at Ageas. The role of theInformation Security Risk and Governance Officer is to support the day-to-day activities of the Education, Capability and Governance (ECG) Team and Manager implementing security initiatives and governance processes that will protect customer, employee and company information from security risks and to ensure that the information security risk to the business is managed to an acceptable level.
Main Responsibilities:
· Y ou will need the following knowledge, skills and experience:
ESSENTIAL SKILLS -
DESIRABLE SKILLS -
Here are some of the benefits you can enjoy within the Risk and Governance Specialist role:
At Ageas we offer a wide range of benefits to support you and your family inside and outside of work, which helped us achieve, Top Employer status in the UK.