Cyber and Information Security Risk Manager

12 Month Secondment

We are looking for a Cyber and Information Security Risk Manager join our IT and Cyber Risk team (second line).

The successful candidate will be responsible for identifying,  assessing, and mitigating risks associated with the organization’s information systems. This role requires a proactive approach to ensure the integrity, confidentiality, and availability of information systems in alignment with business objectives, security standards and regulatory requirements. The manager will lead efforts in developing and implementing risk management frameworks, strategies, and policies while ensuring compliance with relevant regulations.

A bit about the job:

As the Cyber and Information Security Risk Manager you will be responsible for:

• Risk Assessment, Oversight and Assurance Reviews: Conduct comprehensive risk assessments and assurance reviews on information assets, programmes, and technologies to evaluate the effectiveness of information security policies and standards.
• Evaluate the potential impact of identified risks on business operations.
• Work closely with the CISO community, as well as business partners to understand risk exposure.
• Engage with stakeholders to ensure alignment with organizational risk appetite and objectives.

Skills and experience we’re looking for:

• Ability to demonstrate positive engagement in large and complex transformation programmes, has a good understanding of project management methodologies (e.g., Agile) with exposure to senior business and technology management
• Extensive experience in Information Security, with exposure and involvement in risk assessment or audit
• Familiarity with risk assessment frameworks (e.g., NIST, CRISC, ISO 31000) is a plus.
• Proficient in risk or audit assessment methodologies,
• Excellent analytical and critical thinking skills as well as strong written and verbal communication abilities.

Additional Information

Whilst we expect the offered salary to fall within the applicable pay range, any specific offer will be reflective of experience and the market rate for the role.

Please ensure that the job history information on your Career Profile is up to date before submitting your application, or attach an up-to-date CV.

All displaced candidates will be given primacy for this role.

Aviva is for everyone:

We’re inclusive and welcome everyone – we want applications from all backgrounds and experiences. Excited but not sure you tick every box? Even if you don’t, we would still encourage you to apply. We also consider all forms of flexible working, including part time and job shares.

We flex locations, hours and working patterns to suit our customers, business, and you. Most of our people are smart working – spending around 50% of their time in our offices every week - combining the benefits of flexibility, with time together with colleagues.

We interview every disabled applicant who meets the minimum criteria for the job. Once you’ve applied, please send us an email stating that you have a disclosed disability, and we’ll interview you.

We’d love it if you could submit your application online. If you require an alternative method of applying, please send an email to ashley.dean@aviva.com