Head of Security Operations

Department:

IT OperationsEmployment Type:

Permanent - Full TimeAs Head of Security Operations, you will be responsible for leading the day-to-day operational cybersecurity functions for the Group. You will ensure robust, efficient and globally coordinated security operations that protect the organisation’s people, systems, and data. This includes direct ownership of security controls, security testing, vendor management, vulnerability and threat management, and incident response.You will work daily with the Group CISO to support consistent, high-assurance security practices across all regions, in-line with regional regulation and to support the management of cyber incidents. It is essential the individual who will fill this role has prior management experience, has supported building security teams previously and has knowledge around their responsibility at this level to report incidents and security concerns within regulatory timelines and standards.Within this role, you will have been supporting the Group CISO by managing the security team and programmes of work in your responsibility area. You will be responsible for the management of any global Cyber Incidents by supporting the CISO team. Working collaboratively with the SOC to ensure 24/7 visibility and threat detection across global environments, driving maturity and constant improvements to support the ever-changing threat landscape.Defining and monitoring KPIs for detection, response, and containment performance.Owning and managing key security controls, along with managing the vendors responsible for supporting CFC.Ensuring security controls are deployed, tuned, and monitored effectively across cloud and on-premises assets.Leading the organisation’s global vulnerability management program, ensuring threat led and risk-based prioritization, along with collaboration with IT for timely remediation.Support the Group CISO to define security maturity programme roadmaps, priorities and success metrics.The ideal candidate will come with demonstrated leadership and ability with the ability to motivate high-performing, globally distributed security teams. Experience with cloud-native security in AWS, Azure, or GCP.Proven success scaling security operations across geographiesStrong technical ability to understand and manage security tooling, integrations, and data pipelines.Insurance is a serious business, but we don’t take ourselves too seriously.