Information Security Governance Team Leader

Information Security Governance Team Leader will be responsible for managing all the aspects about the Security and technology Governance, Compliance and Risk topics of Admiral EU, leading a team of up to 10 people.

With the GRC team he/she will be responsible for developing, implementing and maintaining Governance Framework (Policies, Procedures and Control), together with different Security Risk, I&AM and Compliance frameworks that allow the company to comply with the security and technology requirements while doing business in a secure way.

MAIN ACTIVITIES

• Lead the creation, implementation, monitoring, and maintenance of information security Policies and Standards.
• Maintain and Improve the Information Security Management System and monitor the adherence of security practices to it.
• Maintain and improve the key Security Governance activities (Security Awareness, Security Risk, KRI, Third party Vendor Management, Red Team and Purple Team exercise coordination, I&AM Compensatory Reviews, I&AM Governance Aspect);
• Govern the DORA framework running and Evolution;
• Establish credibility and maintain strong working relationships with groups involved in security and compliance matters
• Respond to relevant requests received from all stakeholders or representatives of stakeholders.
• Partner with Business and IT point of contacts, to track and/or develop remediation plans for identified improvements and weaknesses.
• Present key findings, progress, and all issues to leadership on a regular basis and be responsible for influencing the stakeholders to prioritize/execute risk management issues and drive remediation efforts.
• Provide all necessary reports and presentations on the status of remediation efforts and all gaps and potential obstacles or issues to management and technical staff.
• Manage a team of 10 Governance specialist, supporting them in their activities and inspiring them
  
  

• Bachelor’s degree in a computer field (or equivalent)
• Information Security Governance Frameworks and Best practices
• Experience into Security Risk Management
• Minimum english level B2 (working in an international team)
• Experience Security Governance activities such as TLPT, Vendor Management, Security Incident Management, Security Awareness and Identity & Access Management, among others.
• Project Management proven experience in security projects
• 5 years of experience and knowledge in similar leading positions
• More than 10 years of experience in governance
• Flexibility
• Ability to work independently and as part of a team
• Strong communication skills (english)
• Organizational skills