Head of Application & Platform Security

The Head of Application & Platform Security is responsible for ensuring the security of Aviva's developed applications, SaaS platforms, and cloud environments throughout their development and production lifecycles. This role involves building and leading a dedicated team to integrate security standards, engineering practices, and tooling, while partnering closely with development teams to embed security at every stage. The successful candidate will ensure comprehensive visibility and management of security risks at the application level, aligning with Aviva's commitment to innovation, collaboration, and customer focus.
 

A bit about the job:

We are seeking a visionary and strategic leader to join our Cyber Security Leadership Team as the Head of Application & Platform Security. This critical role will be accountable for ensuring the security of Aviva's developed applications, SaaS platforms, and cloud environments throughout their development and production lifecycles.

• Set the strategic direction for application and platform security, ensuring it aligns with Aviva’s broader business goals and values

• Integrate security throughout the development lifecycle, embedding controls from design through to deployment

• Lead the development of risk management strategies across applications, SaaS platforms, and cloud environments

• Collaborate with engineering teams to build a security-first culture, driving awareness and secure coding practices

• Implement security tooling and processes, maintain visibility into application risks, and lead a high-performing, innovative team

Skills and experience we’re looking for:

• Proven leadership and team management skills with the ability to lead, inspire, and develop a diverse team of technical and non-technical professionals.

• Extensive experience in application security, cloud security, and SaaS platform security.

• Strong track record of implementing security standards, engineering practices, and tooling in complex environments.

• Excellent communication and stakeholder management skills, with the ability to influence and engage senior leaders and external partners.

• Deep understanding of regulatory requirements and industry standards related to application and platform security

Additional Information:

• Please ensure that the job history information on your Career Profile is up to date before submitting your application, or attach an up-to-date CV.

• All displaced candidates will be given primacy for this role.

Aviva is for everyone:

We’re inclusive and welcome everyone – we want applications from all backgrounds and experiences. Excited but not sure you tick every box? Even if you don’t, we would still encourage you to apply. We also consider all forms of flexible working, including part time and job shares.

We flex locations, hours and working patterns to suit our customers, business, and you. Most of our people are smart working – spending around 50% of their time in our offices every week - combining the benefits of flexibility, with time together with colleagues.

We interview every disabled applicant who meets the minimum criteria for the job. Once you’ve applied, please send us an email stating that you have a disclosed disability, and we’ll interview you.

We’d love it if you could submit your application online. If you require an alternative method of applying, please give Steve Cartwright a call on 07385404944 or send an email to steve.cartwright@aviva.com.