Royal London is the largest mutual life, pensions and investment company in the UK, with Group funds under management of £117 billion and latest Profit Share pay out to members of £142 million.
Group businesses provide around 8.8 million policies and employ 3,745 people. (Figures quoted are as at 30 June 2018).
Founded as a Friendly Society in a London coffee shop in 1861, Royal London started out with the aim to help people avoid the stigma of a pauper’s grave.
Since then we have been helping people help themselves and are committed to delivering the best value for customers and putting members first.
We have an exciting permanent opportunity for a Head of Security Operations to join the Cyber Security team in Wilmslow or Edinburgh.
The main purpose of this role will be to build out the security operations capability for Royal London, as well as acting as a Deputy for the Group Head of IT Security.
You will establish people and processes for security operations, leading a team of 7 which will eventually grow to around 10, as this area evolves.
This will be a daytime SOC with out of hours operations covered by external parties.
This role will offer you the opportunity to pioneer security operations within Royal London. You will know what good likes like, how you will achieve that and will have full board level buy in to do so.
This is a fantastic working environment that encourages flexible working and offers the ability for this individual to work from Edinburgh, or Wilmslow.
To drive definition and on-going review of the security and cyber operation strategy for infrastructure, applications, and data, business processes and IT services.
To own, define, review and test the Security Incident Response Plan, the associated framework, processes, and standards.
Maintaining the required relationships across RLG to enable effective and robust testing, and operation.
To define and maintain the Group IT Security operational Policies and standards
To lead implementation of IT security operation solutions (including those delivered via outsourced arrangements) in line with the security strategies
To facilitate assurance across RLG against Group Information Security policies and provide guidance across business areas ensuring that business teams have a clear understanding of security risks relevant to them and their responsibilities to protect information systems and data
To regularly update the group technology and change leadership team on the threat and compliance security landscape and RLG’s position within that with regard to current risks
To support and help bring about the design of safe and secure IT solutions (including those delivered via outsourced arrangements) ensuring that systems are operable in an efficient and sustainable manner
Skills, Qualifications & Experience :
Excellent knowledge of IT security operation practices, processes, tools and techniques
Experienced and suitably qualified to industry standards, minimum level of CISSP or CISM, or working towards
Significant knowledge of managing Security departments within a wider function in a financial services or similarly regulated industry
Technical skills and suitable qualifications in key security practitioner areas such as Security Operations Centre
Knowledge of IT infrastructure, application and communication systems with specific knowledge of IT Security operations technologies
Knowledge of external trends in IT technologies and a wide experience of using IT security technologies effectively for business gain
Knowledge of infrastructure and applications technologies including networking, communications / telephony etc.
Significant knowledge and understanding of cyber, including regulation and legislation
Experience of developing and monitoring compliance with IT practices and procedures operating within industry standard frameworks including ISO27001 / 2 and ITIL
Significant experience of conducting security assessments and risk management
Experience of working with security audits and managing audit actions
Royal London is an attractive equal opportunities employer and won a 2019 Glassdoor Employees’ Choice’ Award honouring the best places to work in the UK.
We work hard to attract the best talent for our award-winning team. We believe that embracing difference makes us stronger.
Our diverse people bring us different skills whatever their educational background, disability, gender, age, sexual orientation, race, religion or belief.
We will consider flexible working arrangements for all our roles. We also welcome applications from individuals who have taken an extended career break.
To apply, please use the Apply Online’ link below.