1. Home
  2. Information Security Risk Officer
Expires soon
Willis Towers Watson

Information Security Risk Officer

  • Ipswich (Suffolk)
  • IT development
Apply Now

Job description

JOB DESCRIPTION

Summary of Role


Although everybody in the Willis Towers Watson (WTW) Group has a role to play in reducing Information Security risk, the aim of the Information Security Risk Management (ISRM) Team is to co-ordinate and standardize the processes, reporting and approach to Information Security Risk within the group to effectively manage risk and produce a group-wide view of information security risk. This should allow for effective decision making and actions to be taken in response to risk in the most efficient manner. 

This role is the lead for our Corporate Risk and Broking Segment. 

The Role

Be the main point of contact for all Information Security Risk matters with the assigned business Segment, including:

·  Identifying and engaging with the main stakeholders within the segment ensuring that information security’s profile is raised and that they are aware of their security risk officer, 
·  Understand the nature of the business in the segment, the type of information assets that exists and any particular threats to this segment
·  Understand what projects, business and IT initiatives, and changes are taking place within the organisation. Take on security engagement in projects responsibility for projects in this segment.
·  Gain an appreciation as to the extent to which the segment utilises group services, such as IT Infrastructure, systems, desktop builds etc. and where it operates in an autonomous way
·  Understand which business applications are particular to this area and their criticality. 
·  Identify the key Third parties / suppliers particular to this area – BPO, Cloud services, etc.
·  Assisting with incidents related to this area by providing business context as required
·  Assisting with Information Security Compliance reviews and audits within the segment
·  Conducting or assisting with risk assessments for the area
·  Assisting with segment requests for Exceptions to security policy
·  Generally being the Information Security ‘go to’ person for the segment as required

The Requirements


Skills:

·  Demonstrable knowledge and understanding of security principles and good practice
·  Appreciation of Information risk methodologies such as IRAM
·  Sound experience in a security role
·  Team lead experience
·  Understanding of IT Security controls and technologies 
·  Experience of working with IT and business functions
·  Experience of working with a high degree of autonomy, managing own workload and delivering to tight timescales.
·  Experience of working in a regulated environment, not necessarily insurance or financial services.
·  Team player with good interpersonal and influencing skills
·  Ability to work under pressure to tight timelines and without direct supervision
·  Excellent analytical, negotiation and problem solving skills

Qualifications:
• Information security qualifications (e.g. CISSP, CISM) are preferable

The Company

Willis Towers Watson is a leading global advisory, broking and solutions company that helps clients around the world turn risk into a path for growth. With roots dating to 1828, Willis Towers Watson has 40,000 employees serving more than 140 countries. We design and deliver solutions that manage risk, optimize benefits, cultivate talent, and expand the power of capital to protect and strengthen institutions and individuals. Our unique perspective allows us to see the critical intersections between talent, assets and ideas – the dynamic formula that drives business performance. Together, we unlock potential. Learn more atwillistowerswatson.com .

Willis Towers Watson is an equal opportunity employer
Willis Towers Watson believes that effectively managing a diverse workforce is vital to our business strategy. We have an obligation to our organization, ourselves and our clients to hire and develop the best people we can find. We will continually review our policies and practices to ensure that all areas of the employment process (including recruiting, hiring, work assignments, compensation, benefits, promotions, transfers, company-sponsored development programs and overall workplace experience) are free from discriminatory practices. We are committed to equal employment opportunities at Willis Towers Watson.
Unsolicited Contact: Any unsolicited resumes/candidate profiles submitted through our web site or to personal e-mail accounts of employees of Willis Towers Watson are considered property of Willis Towers Watson and are not subject to payment of agency fees. In order to be an authorized Recruitment Agency/Search Firm for Willis Towers Watson, any such agency must have an existing formal written agreement signed by an authorized Willis Towers Watson recruiter and an active working relationship with the organization. Resumes must be submitted according to our candidate submission process, which includes being actively engaged on the particular search. Likewise, for our authorized Recruitment Agencies/Search Firms, if the candidate submission process is not followed, no agency fees will be paid by Willis Towers Watson. Willis Towers Watson is an equal opportunity employer.

Make every future a success.
  • Job directory
  • Business directory
    •