2 of 2 Information Security Officer Jobs in the South East

As the Business Information Security Officer for Risk and Brokering (R&B) you will be a crucial asset to WTW’s cyber security efforts, ensuing robust cyber security practices are embedded across the business unit and are aligned with the organisation’s overall security strategy. This role is to serve as the global trusted … information security partner to the business and technology teams, supporting them to ensure security items are appropriately managed. This role is part of the extended Information & Cyber Security Leadership Team and resides within Corporate IT, reporting to the Lead Business Information Security Officer. The Role Primary responsibly is the BISO for Risk and … Brokering (R&B): Serve as a leader within the Information & Cyber Security Team, as the trusted advisor to R&B leadership, providing strategic cybersecurity insights and recommendations to ensure a cohesive approach to cyber risk management. Ensure cybersecurity practices and security by design are integrated into business unit initiatives, motivating business units to adopt efficient security More ❯

measures, and Ensuring that these mitigation measures are properly implemented, and validating them for any project involving critical assets Monitor the performance of cybersecurity suppliers and services, ensure Cyber Security Insurance is appropriate to meet UK requirements Participate in the management of major Cyber incidents and crisis concerning technology assets, monitor and implement associated action plans Raise awareness of … Cyber risks, particularly among Division/UK top management and Technology contacts (development security, application security Deploy a Cyber Essentials Plus program to address all in scope services across the UK, Participate in the European NIS2 program as appropriate Create training material and other resources to influence user behaviour for adoption of security policy and process What … are the requirements? Extensive experience in leading IT Security activities in complex, multi-site environments that have operational technology elements. CISSP (Certified Information Systems Security Professional) Microsoft certifications and/or network qualifications ITIL Foundation Must have a sound knowledge of risk management, compliance frameworks, integrating security into projects, developing and monitoring indicators and executing action More ❯