Information Security Risk Lead

We’re looking for an experienced Security Risk Lead, to be a key part of the team responsible for oversight across the Admiral Group.

Working in the Group function, rather than being aligned with a specific business, you will be part of a team working to support, challenge and oversee the Group Information Security risk management strategy. This is an exciting opportunity to help build and develop the mechanisms that will ensure that the Group continues to effectively manage exposure to the continuously developing threat landscape.

A big part of the role will be building effective relationships with the business level risk and security teams, championing the secure use of technology and data within the businesses.

Reporting to the Technology Risk Lead, you will be key to ensuring that senior leadership have the right information to enable informed and risk aware decisions to be made.

Main Duties

As Information Security Risk Lead, you will be responsible for

• Leading a team of analysts to consolidate the Group’s risk exposure in Security and leading as the liaison with each business.
• Leading on the continued development and articulation of risk appetite statements as meaningful descriptions of the amount of Security risk the business is willing to take.
• Promoting Security risk governance and management as part of the wider Enterprise Risk Management (ERM) processes, improving awareness and understanding across the Group to minimise the potential impacts upon the business.
• Developing and coaching team members to enable them to develop their knowledge and skills.
• Leading on the development, modification and review of all Group Level Information Security policies and standards ensuring alignment with the risk appetite statements.
• Maintaining awareness of legal and regulatory requirements on managing Information Security risk, keeping up to date on current industry practices and implement change where needed within the development plan.
• Scanning and reviewing potential external emerging Security risks and provide an analysis of potential impacts to the business.
• Producing reports and recommendations on Security risk topics as required for Group Committees/Board.
• Providing advice to guide and support new propositions, products or areas of business expansion.
• Developing and maintaining key stakeholder relationships across the Group.

Key Skills, Qualifications and Experience

Essential:

• Subject Matter expertise – Deep knowledge of Cyber Security governance and risk management allowing you to be recognised as an expert within the business. You will have a minimum of 5 years’ experience in a Cyber risk/governance or Information Security role.
• Initiative and pro-activity – Effective and informed decisions using own initiative and based upon a sound understanding of the business issues and challenges of the business.
• Communication – Clear and appropriate communication for employees at all levels with the ability to discuss technical subjects with both technical and non-technical audiences. Ability to articulate and pitch risk advice, often at a technical level, directly to key customer stakeholders.
• Planning and Organising – Develop clear, efficient, and logical approaches to tackle issues and problems in a logical, step-by-step way. Ability to effectively collaborate and work independently in a fast-growing organisation.
• Customer focus – An understanding of customer priorities and a desire to support their expectations.

Desirable

• Experience working within a regulated environment such as the financial services sector.
• Knowledge of FAIR (Factor Analysis of Information Risk).
• Hold one or more relevant qualifications, for example CISSP, CRISC, CISM.

Salary, Benefits and Work-Life Balance

We do not have a set salary for this position, as it will be dependent on the successful candidate’s experience. We are happy to see CVs from all candidates who meet the requirements and will be happy to discuss the remuneration package.

At Admiral, we are proud to be a diverse business where we put our people and customers first. We have great benefits to ensure employees have a great work-life balance; it's one of the reasons we’re consistently voted one of the Sunday Times Best Big Companies to work for in the UK. We want you to have an element of freedom to define a working lifestyle that supports this, so accommodate flexible hours wherever possible.

All colleagues will receive 33 days holiday (including banks holidays) when they join us, and this will increase with length of service, up to a maximum of 38 days (including banks holidays). You also have the option to buy or sell up to five days of annual leave in addition to your allocation.

You can also view some of our other key benefits here.

#LI-CC2