The role will lead and set direction/priorities for the investigation, evaluation and management of controls in assigned areas of policy responsibility (namely Security Policy) across the Insurance, Pensions & Investments Business Unit. The role also includes leading the Application and Access Management Team to support application owners to fulfil and complete their responsibilities. This will be achieved through strong stakeholder management/engagement (up to Board, Director and Managing Director level) and utilising detailed knowledge/experience of security, risk and control assessment.
Role will require supporting and influencing Senior Leaders across the business on security control management, including deputise for senior colleagues at a Head of Function and Director level when required. The role also requires engagement and influencing of wider Group stakeholders in Chief Security Office (CSO); Group Chief Operating Office (GCOO) and Chief Information Office (CIO).
Key Accountabilities:
- Acts as a source of professional expertise to evaluate, review, investigate and implement security controls across the IP&I Business Unit in assigned areas of policy responsibility or aligned business areas. This will include the operation of certain security controls within the team as well.
- Responsible for leading the Application and Access Management Team for Insurance, Pensions & Investments COO – supporting application owners in IP&I COO, SWWS and GI to meet and fulfil their policy responsibilities through collaborative partnering, support and completion of key activities (e.g. maintenance of ServiceNow, completion of BIAs, completion of Access Management Assessments, monitoring application compliance)
- Leads the development of and manages the implementation of short, medium and long-term plans in the context of remediation strategic programmes, taking into account the risk appetite, governance and regulatory requirements.
- Provide technical expertise as and when required to support the business and utilise knowledge and experience to deliver sustained improvement.
- Develop and maintain effective working relationships, engage cross functional stakeholders to optimise business results – attend and contribute to relevant meetings
- Production of reports/papers and MI as and when required for local, Business Unit or Group meetings as and when required.
- Provide insightful information on implementation and design of security controls to influence business decisions.
- Prepares and interprets, with insight and information from multiple sources, recommendations for action, which also provide a basis for delivering challenging guidance and advice to influence decisions and behaviours across IP&I.
- Develops a network of internal and external relationships to advise IP&I of the implications of best practice to ensure Group policy, legal, regulatory and professional compliance.
- Initiates, leads and delivers assigned security change initiatives to achieve continuous improvement to IP&I colleague capability, processes and IT systems.
- Leads and manages a high performing team, developing colleagues through stretching objectives, feedback and coaching, whilst demonstrating and embedding LBG Group Values.
