Value Stream IT Governance Lead

Location: Guernsey, Haywards Heath, Home Office (Remote) or Manchester

Salary: £55,226 - £69,032 - depending on experience

Department: Technology and Data

We’re 1st Central, a market-leading insurance company utilising smart data and technology at pace. Rapid growth has been based on giving our 1.4 million customers exactly what they want: great value insurance with an excellent service. And that’s the same for our colleagues too; we won Insurance Employer of the Year at the British Insurance Awards 2024 and our Glassdoor score is pretty high!

We’re seeking an experienced IT Governance Lead for a newly created role within our IT Governance team, known as Value Stream IT Governance Lead. This role is pivotal within the team.

You will be responsible for driving IT governance, security, and technology risk management across the value stream. Your role will involve embedding yourself within a value stream, ensuring all technology and business initiatives comply with governance frameworks, standards, and policies. As the IT Governance Lead, you’ll act as a link between the value streams and the Security, IT Governance, and Tech & Data risk teams, providing contextual advice and undertaking relevant activities within the stream.

We value flexible working arrangements, so you can choose to work remotely or from our offices in Salford Quays, Manchester, Haywards Heath, West Sussex, or Guernsey, with occasional office visits.

Core skills required:

• Strong communication and collaboration skills, with excellent reporting abilities
• Ability to analyze security and technology risks
• Ability to work across multiple teams

Key responsibilities include:

• Leading IT, Security & Technology risk governance within value streams to ensure compliance with standards and policies
• Ensuring initiatives follow governance processes
• Providing guidance on risk assessments, mitigation strategies, and acceptance processes
• Monitoring and reporting on technology and security risks, advising on risk management
• Collaborating with IT Governance & Security teams to assess and mitigate emerging risks
• Embedding security controls within development, deployment, and operational lifecycles
• Managing incidents, security events, and root cause analyses
• Triaging vulnerability & Pen Test findings and actions
• Conducting control testing and assurance activities
• Monitoring and reporting on risk mitigation actions
• Performing third-party risk assessments and due diligence
• Supporting audits and governance reviews
• Promoting awareness and training within value streams
• Driving governance process improvements and fostering a culture of accountability

Experience and knowledge required:

• Strong understanding of IT & Security governance, policies, and frameworks (ISO 27001, COBIT, etc.)
• Experience with risk assessments, control testing, and assurance activities
• Knowledge of cloud security principles, especially Azure, and DevOps governance
• Experience in regulated industries like financial services

Skills and behaviors:

• Excellent communication and collaboration skills
• Ability to analyze and mitigate risks
• Proactive in identifying and addressing governance issues
• Effective at building relationships across teams
• Ownership of governance responsibilities
• Thrives in a fast-paced, agile environment
• Ability to explain complex concepts clearly to technical and non-technical audiences

This is just the start. Imagine where you could end up! The journey’s yours…

What we offer:

• People-first culture with energetic, supportive workplaces
• Perks including a Simply Health Cash plan, flexible bank holidays, Electric Car Scheme, flexible working, and additional leave for life events