Lloyd’s is the world’s leading insurance andreinsurance marketplace. We share the collective intelligence and risk sharing expertise of the market’s brightest minds, working together for a braver world.
Our role is to inspire courage, so tomorrow’s progress isn’t limited by today’s risks.
Our shared values: we are brave; we are stronger together; we do the right thing; guide what we do and how we act. If you share our values and our passion to build a future that’s more sustainable, resilient and inclusive, you’ll find a home at Lloyd’s – build a braver future with us.
Lloyd’s is currently seeking to recruit a Senior Associate, Digital Risk to support the assessment of the effectiveness of the cyber and technology controls within the Lloyd’s Corporate environment and the delivery of the digital risk management framework to ensure risks to Lloyd’s data and digital assets are effectively managed.
This is a fantastic opportunity for an experienced cyber security specialist to take the next step in their career: working at the heart of the London insurance market in a team that seeks to deliver world class risk management and security controls for the Corporation of Lloyd’s. The successful candidate must be committed to improving the Corporation’s cyber security and data risk posture, supporting the team to deliver its wider objectives and to developing their technical knowledge and risk practice.
The Operational Risk team is part of a second line Risk Management function which seeks to deliver world class risk analysis, risk insight, risk frameworks and tools to support and challenge first line teams at Lloyd’s.
The Risk Management function is critical to Lloyd’s achieving its long term aims by ensuring risks to the strategy are effectively managed.
Undertake periodic technical reviews of key cyber and other technology controls in the context of a Microsoft Azure environment.
Provide subject matter check and challenge and expertise to relevant stakeholders on cyber security and technology risks and Lloyd’s key outsource suppliers.
Support the development, co-ordination, approval and ongoing monitoring of risk assurance processes and strategies for the management of cyber security and data risks across Lloyd’s.
Support the development, implementation and improvement of standards, policies and strategies for overseeing cyber security and data risks and maturity across members of the Lloyd’s market.
Ensure agreed risk management and remediation plans are being adequately followed.
Deliver processes which provide assurance to Chief Risk Officer, Risk Committee and Council on the cyber security and data risk profile of Lloyd’s.
Support and challenge the first line of defence on the appropriateness and effectiveness of risk mitigation strategies
Provide an independent ‘second line’ opinion on cyber security and data risks and mitigations
Represent Lloyd’s in relevant industry forums on cyber risk topics, including across the Lloyd’s market
Skills and Knowledge
Expert understanding of security policies, procedures and standards for example ISO 27001, NIST Cyber Security Framework and Cyber Essentials Expert
Understanding of designing and/or operating technical cyber security and data control areas, i.e. some or all of vulnerability management, identity and access management, penetration testing, encryption technologies, application security, security operations, intrusion detection, incident response, data protection, data governance, GDPR and OWASP top 10
Good understanding of operating systems (Unix, Windows, Mac)
Good understanding of Cloud Computing and cloud security concepts in Microsoft Azure
Good knowledge of risk management and security risk management principles
Experience in conducting cyber security and data risk assessments of changes, projects and programmes
Experience in implementing and operating cyber security controls; for example, as part of a security operations centre, offensive red team testing or IT security team
Experience in conducting cyber security and/or data protection benchmarking or maturity assessment against recognised industry standards
Experience in providing recommendations to manage cyber security or data risks
Experience in managing the relationships with supplier / partners to assure levels of Security & Compliance capabilities are commensurate
Practical experience with deployment and/or operation of commonly used cyber security or data solutions
Experience in managing stakeholders including challenging or unsupportive stakeholders
Experience of risk management frameworks, tools and processes
Stakeholder management and relationship management skills to build and maintain positive professional relationships with a range of senior stakeholders, in particular with the Technology, Data and Lloyd’s Market oversight departments. This will include an ability to actively influence these senior stakeholders with a confidence to deliver the right risk outcomes at senior levels of the organisation.
In depth technical risk management skills to be able to define and shape industry leading risk management tools which are tailored to the unique Lloyd’s business model as well as satisfying regulatory requirements.
Diversity and inclusion are a focus for us – Lloyd’s aim is to build a diverse, inclusive environment that reflects the global markets we work in. One where everyone is treated with dignity and respect to achieve their full potential. In practice, this means we are positive and inclusive about making workplace adjustments, we offer regular health and wellbeing programmes, diversity and inclusion training, employee networks, mentoring and volunteering opportunities as well as investment into your professional development. You can read more about diversity and inclusion on our website.
We understand that our work/life balance is important to us all and that a hybrid of working from the office and home can offer a great level of flexibility. Flexible working forms part of a total reward approach which offers a host of other benefits over and above the standard offering (generous pension, healthcare, wellbeing etc). These include financial support for training, education & development, a benefit allowance (to spend on our flexible benefits such as gym membership, dental insurance, extra holiday or to partake in our cycle to work scheme), employee recognition scheme and various employee discount schemes.
By choosing Lloyd's, you'll be part of a team that brings together the best minds in the industry, and together with our underwriters and brokers, we create innovative, responsive solutions allowing us to share risk and solve complex problems.
Should you require any additional support with your application, or any adjustments, please click the following link;
Please note, clicking on this link does not register your application for the vacancy