IT Security Customer Assurance Manager

My client, a well known Insurance firm are looking for an IT Security Customer Assurance Manager to join their growing team in London

About the IT Security Customer Assurance Manager Role:

The purpose of this role is to assist in the operation of Technology External Assurance function's focus on Customer Information Security Assurance by the execution and oversight of activities including bids & tenders, contract reviews, due diligence, audits, findings and reporting to manage and deliver the expectations of my client's customers aligned to defined SLAs and deadlines.

The role holder will also identify and deliver enhancements to External Assurance operations and evolving customer expectations are maintained including partnering with other functions, across Technology, Commercial, Legal, Data Privacy and the wider business.
Additionally, the role holder will provide surge support with the execution of Supplier assurance activities.

The role holder will be expected to take an active part in the operation of the function by overseeing the activities of other members of the team and deputising for the Senior Manager, 3rd Party IT Risk as required.

Role Description:

* Execute and oversee the delivery of end-to-end customer information security due diligence both as part of the onboarding and ongoing processes aligned to defined SLAs, including responding to questions, providing documentation, and managing follow-up queries, aligned to both Bupa and customer expectations.
* Support Commercial and Tender teams with the information security component of Bupa's new business opportunities including questionnaires, presentations, and customer calls.
* Execute and oversee the end-to-end delivery of the information security components of customers audits, including planning, scoping, preparation, documentation, delivery and follow-up, in direct partnership with customers and internal Commercial teams.
* Liaise with subject matter experts to ensure information is gathered in a timely manner to ensure customer requests are correctly responded to and protect my client
* Reviewing and negotiating customer contractual IT agreements and clauses to ensure that customers' expectations can be fully met and aligned to my client's Services.
* Oversee the delivery of my client's Technology External Assurance function including delivery of metrics and reporting; execution of quality assurance; and work allocation / prioritisation.
* Develop and maintain customer-based content to improve the ongoing operation and delivery of customer information security due diligence, including internal knowledge base, whitepapers and product sheets.

Key Skills / Qualifications needed for this role:
* Senior professional experience with management responsibilities in either a Big 8 external practice, Internal Audit, or regulated Assurance function.
* Certified in relevant audit, risk and security certifications preferably with one of the following: IIA, CISA, CISM, or CISSP
* Experience of working in a UK regulated organisation, especially FCA/PRA or UK GDPR
* The role requires strong Information Security/Assurance, Audit, Compliance and Risk knowledge, experience of IT Risk and assurance frameworks, and control assurance assessments (e.g. ISO 27001, PCI DSS, CIS 20, NIST, ISACA IT Risk).
* Demonstrable experience in planning, executing and supervision of controls assessments and risk-based audits.
* Demonstrable experience in review and assessment of contractual or regulatory artifacts / documentation
* Experience of Assurance concepts preferably with internal IT Compliance or IT Control assurance experience.
* Demonstrable strong written and verbal communication skill

Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates