Head of Security Operations
Royal London Group
Flexible, GB
30d ago

Royal London is the largest mutual life, pensions and investment company in the UK, with Group funds under management of £117 billion and latest Profit Share pay out to members of £142 million.

Group businesses provide around 8.8 million policies and employ 3,745 people. (Figures quoted are as at 30 June 2018).

Founded as a Friendly Society in a London coffee shop in 1861, Royal London started out with the aim to help people avoid the stigma of a pauper’s grave.

Since then we have been helping people help themselves and are committed to delivering the best value for customers and putting members first.

We have an exciting permanent opportunity for a Head of Security Operations to join the Cyber Security team in Wilmslow or Edinburgh.

The main purpose of this role will be to build out the security operations capability for Royal London, as well as acting as a Deputy for the Group Head of IT Security.

You will establish people and processes for security operations, leading a team of 7 which will eventually grow to around 10, as this area evolves.

This will be a daytime SOC with out of hours operations covered by external parties.

This role will offer you the opportunity to pioneer security operations within Royal London. You will know what good likes like, how you will achieve that and will have full board level buy in to do so.

This is a fantastic working environment that encourages flexible working and offers the ability for this individual to work from Edinburgh, or Wilmslow.

Responsibilities :

  • To drive definition and on-going review of the security and cyber operation strategy for infrastructure, applications, and data, business processes and IT services.
  • To own, define, review and test the Security Incident Response Plan, the associated framework, processes, and standards.
  • Maintaining the required relationships across RLG to enable effective and robust testing, and operation.

  • To define and maintain the Group IT Security operational Policies and standards
  • To lead implementation of IT security operation solutions (including those delivered via outsourced arrangements) in line with the security strategies
  • To facilitate assurance across RLG against Group Information Security policies and provide guidance across business areas ensuring that business teams have a clear understanding of security risks relevant to them and their responsibilities to protect information systems and data
  • To regularly update the group technology and change leadership team on the threat and compliance security landscape and RLG’s position within that with regard to current risks
  • To support and help bring about the design of safe and secure IT solutions (including those delivered via outsourced arrangements) ensuring that systems are operable in an efficient and sustainable manner
  • Skills, Qualifications & Experience :

  • Excellent knowledge of IT security operation practices, processes, tools and techniques
  • Experienced and suitably qualified to industry standards, minimum level of CISSP or CISM, or working towards
  • Significant knowledge of managing Security departments within a wider function in a financial services or similarly regulated industry
  • Technical skills and suitable qualifications in key security practitioner areas such as Security Operations Centre
  • Knowledge of IT infrastructure, application and communication systems with specific knowledge of IT Security operations technologies
  • Knowledge of external trends in IT technologies and a wide experience of using IT security technologies effectively for business gain
  • Knowledge of infrastructure and applications technologies including networking, communications / telephony etc.
  • Significant knowledge and understanding of cyber, including regulation and legislation
  • Experience of developing and monitoring compliance with IT practices and procedures operating within industry standard frameworks including ISO27001 / 2 and ITIL
  • Significant experience of conducting security assessments and risk management
  • Experience of working with security audits and managing audit actions
  • Royal London is an attractive equal opportunities employer and won a 2019 Glassdoor Employees’ Choice’ Award honouring the best places to work in the UK.

    We work hard to attract the best talent for our award-winning team. We believe that embracing difference makes us stronger.

    Our diverse people bring us different skills whatever their educational background, disability, gender, age, sexual orientation, race, religion or belief.

    We will consider flexible working arrangements for all our roles. We also welcome applications from individuals who have taken an extended career break.

    To apply, please use the Apply Online’ link below.

    Apply
    Add to favorites
    Remove from favorites
    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form