Overview
Information Security Governance Team Leader will be responsible for managing all the aspects about the Security and technology Governance, Compliance and Risk topics of Admiral EU, leading a team of up to 10 people. With the GRC team he/she will be responsible for developing, implementing and maintaining Governance Framework (Policies, Procedures and Control), together with different Security Risk, I&AM and Compliance frameworks that allow the company to comply with the security and technology requirements while doing business in a secure way.
Responsibilities
* Lead the creation, implementation, monitoring, and maintenance of information security Policies and Standards.
* Maintain and Improve the Information Security Management System and monitor the adherence of security practices to it.
* Maintain and improve the key Security Governance activities (Security Awareness, Security Risk, KRI, Third party Vendor Management, Red Team and Purple Team exercise coordination, I&AM Compensatory Reviews, I&AM Governance Aspect).
* Govern the DORA framework running and Evolution.
* Establish credibility and maintain strong working relationships with groups involved in security and compliance matters.
* Respond to relevant requests received from all stakeholders or representatives of stakeholders.
* Partner with Business and IT points of contact to track and/or develop remediation plans for identified improvements and weaknesses.
* Present key findings, progress, and all issues to leadership on a regular basis and influence stakeholders to prioritize/execute risk management issues and drive remediation efforts.
* Provide all necessary reports and presentations on the status of remediation efforts and all gaps and potential obstacles or issues to management and technical staff.
* Manage a team of 10 Governance specialists, supporting them in their activities and inspiring them.
Qualifications
* Bachelor’s degree in a computer field (or equivalent)
* Information Security Governance Frameworks and Best practices
* Experience in Security Risk Management
* Minimum English level B2 (working in an international team)
* Experience in Security Governance activities such as TLPT, Vendor Management, Security Incident Management, Security Awareness and Identity & Access Management, among others
* Project Management proven experience in security projects
* 5 years of experience and knowledge in similar leading positions
* More than 10 years of experience in governance
* Flexibility
* Ability to work independently and as part of a team
* Strong communication skills (English)
* Organizational skills
#J-18808-Ljbffr