IT Security Assurance Lead (ISO, NIST, COBIT5, Insurance)
Technical Security Consultant/IT Security Assurance Lead Duration: 6 months Start: January 2025 Rate: Market day rate - Inside IR35 Location: Hybrid working - 1 day per week onsite in Warwickshire Deliverables: Drive and monitor effective risk management activities across the IT Security Service function to manage and mitigate risk exposure in line with Group policies and procedures, the IT division framework, industry standards and regulatory requirements. Identify, recommend and facilitate the development, implementation and improvement of appropriate IT security controls across the Security Services function to mitigate risks and issues, ensuring that recommended actions are in line with Group IT Strategy and are aligned with Group Risk controls, policies and regulatory requirements. Coordinate and manage Audit activities for IT Security Services and key security service partners to provide consistent and timely responses to audit requirements and to deliver on follow up actions to improve the department’s compliance position. Develop and manage regular reporting of IT Security Service risks, issues, controls and audit position for IT senior managers. Execute and interpret regular MI reporting of IT Security Services and key supplier performance to recommend enhancements and drive the continual improvement of all aspects of the Security Services function. Deliver short term / one-off projects and activities as required by and to the standards and outcomes as agreed with the Line Manager. Essential experience: Recent and demonstrable experience in managing teams/projects in an IT environment. Experience of performing risk and control-based reviews, particularly related to security. Demonstrable understanding of ISO 27001:2013 and/or other security standards such as ISF Standard of Good Practice and NIST frameworks. Demonstrable understanding of COBIT5 or similar security controls frameworks. Excellent relationship building and influencing skills. Excellent communication skills (written, oral and presentation). Experience in an insurance, investments, and pensions environment. IT risk, control, and audit experience, particularly related to security. If you would like to be considered and have experience in the above areas - please submit your application ASAP to Jackie Dean at Jumar for consideration.
#J-18808-Ljbffr
Technical Security Consultant/IT Security Assurance Lead Duration: 6 months Start: January 2025 Rate: Market day rate - Inside IR35 Location: Hybrid working - 1 day per week onsite in Warwickshire Deliverables: Drive and monitor effective risk management activities across the IT Security Service function to manage and mitigate risk exposure in line with Group policies and procedures, the IT division framework, industry standards and regulatory requirements. Identify, recommend and facilitate the development, implementation and improvement of appropriate IT security controls across the Security Services function to mitigate risks and issues, ensuring that recommended actions are in line with Group IT Strategy and are aligned with Group Risk controls, policies and regulatory requirements. Coordinate and manage Audit activities for IT Security Services and key security service partners to provide consistent and timely responses to audit requirements and to deliver on follow up actions to improve the department’s compliance position. Develop and manage regular reporting of IT Security Service risks, issues, controls and audit position for IT senior managers. Execute and interpret regular MI reporting of IT Security Services and key supplier performance to recommend enhancements and drive the continual improvement of all aspects of the Security Services function. Deliver short term / one-off projects and activities as required by and to the standards and outcomes as agreed with the Line Manager. Essential experience: Recent and demonstrable experience in managing teams/projects in an IT environment. Experience of performing risk and control-based reviews, particularly related to security. Demonstrable understanding of ISO 27001:2013 and/or other security standards such as ISF Standard of Good Practice and NIST frameworks. Demonstrable understanding of COBIT5 or similar security controls frameworks. Excellent relationship building and influencing skills. Excellent communication skills (written, oral and presentation). Experience in an insurance, investments, and pensions environment. IT risk, control, and audit experience, particularly related to security. If you would like to be considered and have experience in the above areas - please submit your application ASAP to Jackie Dean at Jumar for consideration.
#J-18808-Ljbffr
