Technology Risk Executive

Welcome to Hastings Direct 

We’re a digital insurance provider with a clear strategy to become the best and biggest player in the UK market. As a company, we’ve made huge investments in our technology, pricing, data and analytics capabilities over the past few years, along with nurturing our 4Cs culture and substantial investment in our people. And as an Assurance, Risk and Compliance team, we're doing the same. The fact you’re now reading this job advert means we’ve tempted you to find out more about #lifeatHD. If you like what you see, we hope you'll consider joining our team.    

We have high standards and understand some people may not apply for jobs unless they feel they tick every box. If you’re excited about joining us and think you have some of what we are looking for, even if you’re not 100% sure, we would love to hear from you.  

Role overview   

You will be supporting the Information Security manager in assuring Hastings’ compliance with its regulatory and legal obligations, by working with the business to help to identify and manage our technology, information and cyber security risks.  

You’ll also be supporting our Operational Resilience activities, undertaking due diligence on our third-party technology suppliers, and assisting with incidents and investigations.   

The role covers organisational security, people security, physical (site) security and technical security controls.  

Skills Knowledge & Experience 

• Cyber Security Knowledge – You’ll have a sound understanding of cyber and information security, including frameworks like NIST and ISO IEC 27002:202. It will be great if you also know about PCI-DSS V4.0 as well.

• Clear Communication -You’ll be able to discuss these with technical and non-technical stakeholders in a way which is accessible and understood.  

• Threat landscape – You'll understand the current threat landscape in respect of Cyber, Privacy and Security risks, and how that applies to a company like Hastings. 

• Analytical thinking - You’ll be able to break down complex problems and be always looking for innovative, pragmatic solutions. 

• Risk management – You’ll have a good understanding of how to assess and manage technology risk. Even better if you have a solid understanding of Enterprise-Wide Risk frameworks.  

Qualifications 

• A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. 

• A relevant IT or security-based degree or equivalent practical experience. 

Reward 

Salary – Attractive salary based on experience + car allowance (pay reviews also completed each year) 

Flexible Working – We champion a flexible and hybrid working approach so please speak to your recruiter to discuss in more detail, including days in the office and at home.   

Competitive Bonus Scheme - All colleagues are eligible for our annual 4Cs performance bonus, which is usually paid in March. The scheme is based on Hastings’ performance against our business goals and your own personal performance. 

Physical Wellbeing – as a Band 4 colleague, Hastings pay for you to receive private medical Insurance (also known as PMI) This gives you flexibility and convenience to see a specialist or consultant and allows you to decide when and where you will be seen. 

Financial Wellbeing – As well as providing you with 4x your salary with our life assurance cover and income protection at no extra cost, pension contribution match up to 10%, we are proud to provide you with an AWARD WINNING package which includes – discounts and cashback at everyday retailers and on our own products, fee free independent mortgage advice, and free access to financial wellbeing support. 

Mental Wellbeing programme – At Hastings Direct we understand that mental health cannot not be scheduled, that’s why we have a range of support to help you keep yourself well. We have the thrive mental health app, our colleague assistance programme available 24/7, our own, in-house mental health first aiders, support groups and a dedicated team to make sure we are covering your needs 

There's more! – 27 days annual leave + bank holidays, with the option to buy or sell one of your contracted weeks, access to our health care cash back plans, dental plans, discounted health assessments, Cycle to work and tech schemes, discounted and free onsite facilities, social events throughout the year and much more …. 

Our 4Cs principles are simple: we believe by creating the right culture for our colleagues and giving them the right tools to do their job, we’ll deliver good outcomes for every customer, helping us to grow the company profitably and sustainably and allowing us to invest in the communities we serve. 

At Hastings Direct, we’re committed to creating an inclusive environment where everyone has the opportunity to succeed. If you require any reasonable adjustments during the recruitment process, we encourage you to be open with us. Our recruitment team is here to provide the support you need to ensure a fair and accessible experience for all.

Job posting end date: