IT Risk & Controls Manager [UK based]

IT Risk & Controls Manager [UK based]

Description

IT Risk & Controls Manager

London or Malta

Hybrid, two days in office

Permanent / full-time

We are a fast-growing global reinsurance speciality company servicing the insurance markets of Lloyd’s, Europe and North America.

Due to expansion and further regulatory obligations, we are looking for our first IT Risk & Controls Manager to lead, develop and implement our IT and cyber security controls framework within a cloud-based insurance environment.

Reporting to the Head of Enterprise Transformation in our Data & Technology team, this is a brand-new position and will span the whole Compre group.

An ideal opportunity to get your hands round a company-wide security strategy, you’ll also be able to influence a major project to modernise our whole IT/cloud estate.

Responsibilities

• Collaborate with stakeholders to drive security initiatives and strategy
• Implement a best practice IT Controls Framework
• Act as the security SME across IT, overseeing security operations, incident management and threat detection
• Ensure robust third-party security, including commercial agreements
• Implement security policies and standards
• Manage cybersecurity risks and response to incidents
• Implement plans to meet cybersecurity regulatory requirements eg. DORA
• Lead the execution of security certifications
• Champion a security awareness culture through training and engagement initiatives
• Work with auditors to demonstrate control compliance and for remediation activities

Candidate requirements

• Experience in IT Risk Management, Compliance, Internal Audit or External Audit roles – understanding IT security standards and frameworks
• Previous work experience in a regulated Financial Services environment – ideally you will have knowledge of the DORA framework and know how to translate requirements into business deliverables
• Track record of implementing and managing IT and cybersecurity control frameworks
• Experience with security certification processes (ISO27001, NIST, etc.)
• Demonstrated success in remediation of audit findings and control gaps
• History of leading security awareness programs and training initiatives
• Experience working with external auditors
• Familiarity with cloud environments and associated security considerations
• Able to communicate complex ideas to non-technical audiences
• Strong Microsoft Office skills, particularly Excel and ideally Microsoft Purview
• Contributing positively to our culture and values.

Benefits

Compre is a global speciality reinsurance company that offers capital and liability solutions to its clients, providing them with the certainty they need on their portfolios. We are known for being trusted partners to the market and for having a team of experts who collaborate and maintain discipline in underwriting, ensuring a differentiated client experience.

As an ambitious business, we are focused on building depth, breadth, and diversity in the talent across our business to be future-ready. Our clients' needs evolve as the market changes, which is why we continuously invest in areas such as data and technology. This way, we can serve current and future clients' needs with scalable and new technology, delivered by our growing agile Data and Technology team.

At Compre, we offer a range of benefits and team engagement events and provide a supportive environment for learning and growth. We are intent upon building a great business, and over the last few years, we have expanded our markets across Europe, Lloyd's, and North America. Our team is based in Bermuda, Finland, Germany, Malta, UK and the US.

To keep our globally dispersed team connected, we have various employee resource groups, including Wellbeing, DEI, COMMS and Engagement.

We invest in our people and offer learning and development opportunities for leaders and employees to build confidence and grow their skill sets. We value teamwork, authenticity, and innovation, and provide a space for these behaviours to bloom at Compre.

Make an impact in a collaborative environment with some of the best talent in the industry, while enjoying:

· competitive salary & annual bonus

· a health & wellbeing subsidy (£20 per month) (from Day 1)

· a generous pension (eligible after probationary period)

· private healthcare from BUPA and a Healthcare Cash Plan from Medicash (from Day 1)

· life assurance (from Day 1)

· income protection (from Day 1)

· 25 days annual leave (from Day 1)

· cycle to work scheme (from Day 1)

· season ticket loan (interest free) (eligible after probationary period)

· electric vehicle scheme (eligible after probationary period)

· EAP (Employee Assistance Programme) (from Day 1)

· learning/study support and reimbursement for professional memberships

· hybrid working

· employee socials and recognition programme