As a Cyber Security Risk and Controls Manager you'll be the subject matter expert for cyber security risk and controls across L&G. This is a key role in the Technical Risk Functional Areas, providing expertise on cyber security related risk matters, staying abreast of emerging threats, vulnerabilities and risks within the Technical Risk Functional Areas.
The purpose of the role is to ensure that cyber security controls are designed and operated across L&G in a consistent and effective manner. You'll provide proactive challenge, risk and control insight supporting cyber security controls testing, assurance activities and enabling Business Technology Risk Partners with subject matter knowledge on cyber security risks to support the effective management in their business division.
What you鈥檒l be doing:
- Providing expert guidance on cyber security risk identification, analysis and mitigation to ensure alignment with L&G risk frameworks and evolving threat intelligence
- Leading the implementation and continuous improvement of cyber security controls across L&G systems, applications and third parties, to ensure controls remain effective, proportionate and mitigate our key risks
- Ensuring compliance to cyber security policies and standards, and regulatory requirements, to ensure L&G and its third parties meets internal and external requirements
- Managing, overseeing and providing cyber security subject-matter expertise to controls testing, assurance reviews and preparation for internal or external audits, to ensure controls are appropriately evidenced, tested, and remediated adequately where required
- Providing subject matter expertise input into the response and analysis of cyber security or controls failures, to ensure lessons are learned and systemic risks are addressed
- Maintaining up-to-date knowledge of cyber and information security and managing the pool of subject-matter experts, to ensure risk and control activities are performed effectively in line with current threats, best practices and regulatory requirements
- Providing SME support on IT and change initiatives with respect to delivering improvements to customer support and experience
- Managing the team in line with company policies and the Partnership Agreement to consistently achieve business objectives