European Business Information Security Officer

Built on meritocracy, our unique company culture rewards self-starters and those who are committed to doing what is best for our customers.

Business Information Security Officer

Location: Hybrid - London

Package: Negotiable + Benefits

Are you passionate about cybersecurity and ready to make a significant impact in a dynamic, fast-paced environment? At Brown & Brown Europe, we're seeking an exceptional Business Information Security Officer (BISO) to lead the charge in safeguarding our European operations.

As a BISO, you'll play a pivotal role in shaping and driving our cyber security strategy. You will ensure that security measures are not only implemented but continuously improved to keep our cyber risk well within appetite. This is a unique opportunity to lead critical initiatives, collaborate with senior stakeholders, and align cyber security with our business objectives across diverse European markets.

The day to day:

1. Ensuring we have a cyber strategy that is documented, evergreen, and endorsed by Technology Solutions and the Europe Executive committee.
2. Demonstrating the robustness of the cyber strategy via reference to industry standards e.g., NIST, ISO27001 or other standards as appropriate.
3. Documenting and agreeing on a Europe cyber security architecture standard which delivers the strategy. That standard is to be based on the Group standard with any deviation(s) formally approved. Representing security architecture in the Europe Architecture Review Board.
4. Ensuring the Europe standard is implemented across the Europe business.
5. Supporting the security aspects of M&A activity, both pre-deal due diligence and the post-deal 90 days security standard deployment.
6. Ensuring that security operations processes are defined, embedded, and operating to SLA across Europe.
7. Ensuring that Cyber risk is proactively assessed and managed, and that cyber events are reported on and fully closed out.
8. An active member of the team shaping the Brown & Brown security roadmap & Europe technology roadmap.
9. Responsible for ensuring the delivery of the European components of the information security roadmap.
10. Driving successful change implementation at pace across Europe and potentially wider Brown & Brown.
11. Line management of any information security teammates in the Europe budget.
12. Operational management of any Security incidents in Europe.
13. A valued member of the Brown & Brown Technology Solutions leadership team (Europe & Security).

1. BA/BS in a business or technology related field.
2. Extensive years of experience working in risk management, governance, and regulatory requirements related to cybersecurity with a specific focus on business outcomes and service delivery.
3. CISSP or CISM or ability to pass exam(s) within 90 days.
4. Working knowledge of ISO27001, NIST, Cyber Essentials and other security standards.
5. Deep experience of security architectures and the tooling required to instantiate.
6. Well networked within the security ecosystem in the UK.
7. Experience running a SOC and working cyber incidents.
8. Experience leading teams responsible for security across mid to large scale organisations (55 people +).
9. Excellent Communication skills, both written and verbal.
10. Ability to quickly build trust, respect and confidence across organisational and geographical boundaries.
11. Decision Making - balancing competing needs and interests.
12. Coaching and Mentoring.
13. Continual desire to deliver excellence and improve.
14. Able to effectively analyse risk within the context of business problems.
15. Ability to successfully drive change across the organisation.
16. The successful candidate will successfully blend excellent leadership with deep technical expertise.

1. Insurance Industry experience, financial services industry experience.
2. Agile delivery qualifications (e.g., SAFe).

1. A negotiable basic salary and all the normal benefits you'd expect (Holiday, company pension etc.).
2. A collaborative, open and honest environment that is designed to deliver the best outcomes to our clients and staff.
3. A flexible working methodology to enable you to be where you need to be; if you don't need to be in an office then don't, if you want to be in an office you're welcome to use one.
4. An environment built around supporting and developing our staff with funding available for relevant professional qualifications.