Search Vacancies

Technical Security Consultant (Group Entity Security)

Business Role Type
Business Support Role
Business Support Departments
Cardiff, Swansea
Competitive, based on experience, plus excellent Admiral benefits (including company shares and more)
Ever wondered what life in Admiral is like?
Apply now

We have a brand-new role to fill as the Technical Security Consultant within the Group Entity Security team, part of the Admiral Group Information Security department. The team is focused on the overseas and non-insurance businesses that operate as part of the Admiral Group.

The role is intended to provide information security expertise to support the Admiral Group businesses in understanding their security risk exposure and ensuring alignment between local Information Security strategies and that of the Group.

By working closely with the individual businesses, the role will support a developed understanding of the information security risks that they face. This will in turn enable effective prioritisation of activities and investment, with identification of opportunities to develop common approaches across the Group.

Job Purpose

  • Promote the secure use of information within the business, enabling informed and risk aware decisions to be made
  • Produce analysis and reporting of the Information Security risk and control environment, ensuring timely identification of themes and emerging risks, issues and exposure
  • Assess any gaps in the information security posture, where possible identifying common approaches to address them
  • Provide recommendations for action to ensure effective risk management within the Group businesses
  • Support the production of information security reporting to relevant Committees
  • Support the business in clearly understanding their exposure to information security risk and put in place pragmatic and cost-effective controls
  • Represent Information Security as part of business projects to ensure that Information Security risks are identified and considered
  • Develop an awareness of the legal and regulatory requirements of the businesses for reporting and management

Main Duties

  • Review and challenge assessments of Information Security risks and the controls in place to mitigate these risks
  • Support the delivery of business and Information Security projects
  • Provide mentoring and support on information security topics
  • Support consistent Information Security risk reporting, collating the information to allow for  review to identify common themes / emerging trends
  • Maintain awareness of potential external emerging information security risks and provide an analysis of potential impacts to the business
  • Produce reports and recommendations on Information Security topics as required for business committees
  • Liaise with business areas to explore current business activities and future plans, with a view to identify possible future changes to Information Security risk profile
  • Provide advice to guide and support new propositions, products or areas of business expansion 
  • Deal with and/or refer any Information Security management queries that are generated by the organisation in a timely and accurate fashion
  • Facilitate regular information security risk reviews
  • Provide technical support and guidance relating to investigation of information security risk events and near miss events. Review root cause analysis performed, and action plans produced to identify learnings that can be shared amongst the Group
  • Develop and maintain key stakeholder relationships across the Group

Experience and Qualifications Required

The role would suit someone with an information security consulting background, who is familiar with the typical challenges an organisation faces and is able to support the business in developing appropriate approaches to manage information security risks.

An excellent knowledge of Information Security principles is required, with the ability to convey potentially complex principles to audiences of varying technical understanding. The ability to communicate effectively, constructively, confidently and professionally is key to the success in the role.

Ideally you will have experience in performing information security risks assessments of business projects and providing support / guidance to arrive at solutions that do not expose the business to undue risk.

Given the nature of the role a keen attention to detail, with excellent analytical skills is required.

The candidate must have the ability to actively manage workloads to meet business and department requirements.

A strong technical background is required for this role to ensure effective communication with IT and Information Security teams.

Highly Desirable

  • Familiarity with at least one of Google Cloud Platform, Amazon Web Services or Microsoft Azure
  • Experience within the Insurance / Financial sector
  • Information Security Certifications such as CISSP, CISM etc
  • Degree in an information security / computing discipline

About Admiral

Our success goes hand-in-hand with having a strong culture where we put our people and customers first. Our philosophy is simple yet effective: people who like what they do, do it better, and this in turn, means that our customers receive the level of service and products that they deserve. Our culture is honest, open and wholeheartedly focused on four key areas: Communication, Equality, Reward & Recognition, and Fun.

The Recruitment Officers looking after this role are Jessica Sutton ( and Luke Tooze ( . If you’d like to know any more about the position, please feel free to drop them an email or give them a call on the Recruitment line - 0800 118 1619.