Job Description
Job Description
Data Security Manager - Permanent - London/Hybrid
Join a dynamic team as a Data Security Manager, where you'll play a pivotal role in safeguarding the strategic data and analytics assets. You'll work within a matrix organization to implement top-notch Data Security Controls, ensuring the business meets all Information Security and Data Policy standards.
In this exciting position, you'll develop and uphold the clients Controls Framework, aligning with the '3 Lines of Defense' Governance Model. You'll need to be a proactive IT project and change manager, capable of transforming security and compliance requirements into robust data controls that protect our valuable assets.
We're looking for someone with a passion for Cloud technologies or a keen willingness to learn. If you're a process analysis and continuous improvement enthusiast ready to drive impactful change among diverse stakeholders, this is the perfect opportunity for you. Join them by being a key player in their innovative and forward-thinking team!
Responsibilities:
- Partner with key stakeholders from Global Technology, Risk Management, Data Protection Officer, and Information Security to ensure products and processes are compliant, resilient, and audit-ready
- Ensure products comply with GDPR, CFIUS, and other relevant regulations
- Develop and contribute to KPIs/KRIs that support strategic goals
- Promote a customer-first culture, prioritizing service for business stakeholders while balancing process improvements
- Take end-to-end ownership of Data Controls projects to achieve success with relevant stakeholders
- Manage current projects related to Cloud Secure Design and Data Access Rights Management improvement to proactively meet future strategic requirements, focusing on Process, People, and Technology
- Strong communication and negotiation skills are essential to ensure that key stakeholders understand risks for appropriate prioritization and funding
- Develop and maintain a roadmap to manage Security, Compliance, and Risk requirements
Skills/Experience:
- IT background with a passion for optimizing process performance to deliver business value.Understanding that technology requires effective processes
- Working knowledge of TOGAF, NIST, ITIL, ISO 27k, GDPR, CIFIUS is essential for this role
- Knowledge of Cloud technologies or a keen aptitude to learn is required
- Proven business acumen and commercial awareness
- Experience with the '3 Lines of Defense' Governance Model
- Working knowledge of IT security best practices, penetration testing, vulnerability management, Incident, Problem & Change Management, and Business Continuity
- Robust experience in project management, analytical skills, and continuous improvement methodologies
- Strategic thinking and the ability to 'connect the dots' to optimize delivery
- A minimum of a bachelor’s or master’s degree in a relevant discipline, or equivalent experience
- Proven experience leading both projects and teams
- Understanding the importance of data and a passion for being part of a strategic data team
- Knowledge of commercial lines insurance is an advantage
- Effective communication across globally diverse stakeholder groups in a matrixed global organization
- Excellent presentation, communication, and relationship-building skills
- Brings a collaborative spirit, can-do attitude, and a Customer First mindset