The role works as an expert resource to provide information or cyber security and risk management services to support compliance, regulatory, IT security best practice, policy, and business requirements.
Maintain, monitor, administer and operates on-premises or cloud-based information or cyber security tools and processes for the following:
Privileged Access Management
Data Leak/Loss Prevention
Cyber Security Incident Response and Surveillance
Security Incident and Events Management
Cyber Threat Intelligence
Identify, assess, monitor, and manage IT and security risks and performance
Support the design and evolution of information security tools and processes
Drive data protection and data security to protect all critical data and information
Works in partnership with other members of the team to support and drive the direction and development of the function
Experience within the insurance industry or financial services preferred
At least 5 years IT experience, working in a technical discipline
At least 5 years working experience in data protection, information and cyber security domain
At least 3 years working experience in IT and security risk management
Technical certifications (desirable)
CISSP or CISM (preferred)
Good knowledge of security technology, with proven ability to apply knowledge to use case
Excellent communication skills, ability to explain technical issues to mixed audience ranging from technical to business, project management to leadership
Knowledge of project lifecycles, with working experience of Agile project methodology
Good understanding of IT technologies such as cloud, networking, servers etc.
Good knowledge of risk identification, assessment, treatment, and monitoring.
Good knowledge of data protection and data security