Aon is currently recruiting a Cyber Security Manager to join our team. This role will act as the lead for the functional Regional Security Office (RSO) and EMEA RSO Centre of Excellence. This function is part of the EMEA RSO team, and it will deliver region-wide services to support Cyber governance, risk, compliance, and operations.
Working with the EMEA Regional Security Officer, the role will lead both the function and the team in delivering a first-rate service in the region. The role and function will also leverage Global Security Services (GSS) to effectively support the regional, sub-regional and country.
This is a virtual position.
responsibilities :
Security Risk Management :
Develop and provide an issue management shared service within the region, including; exception and risk acceptance management.
Define a region-wide consistent and effective approach to issue management.
Collaborate with sub-regional leadership to ensure issues are effectively managed with required input from sub-regional / country key stakeholders, e.g. Risk Owners, Technology, Operations, Privacy, etc.
Provide an exception management shared service within the region.
Manage operational exception requests within region, e.g. website exceptions.
Define a region-wide consistent and effective approach to exception management.
Collaborate with sub-regional leadership to ensure awareness of exceptions.
Develop and provide reporting to RSO leadership team.
Security Governance:
Develop and manage comprehensive regional, sub-regional and country reporting to respective committees. Including; Issue Management, Vulnerability Management, Control Compliance, Incidents, Audit findings, Data Governance, Business Continuity / Disaster Recovery, Security KPIs and KRIs.
Support Merger and Acquisition activities within the region, in conjunction with sub-region / country ISOs, where applicable.
Manage region-wide audit activities, both internal and external, in conjunction with the sub-region / country ISO, where applicable.
Track regional, sub-regional and country remediation.
Provide reporting to regional governance and audit to monitor audit remediation through its lifecycle.
Security Compliance:
Manage the security aspects of region-wide compliance, including; DORA, EIOPA, etc.
Represent security and, in conjunction with regional leadership, support management of regulatory supervision within the region.
Develop region-wide compliance management to support control assessments.
Client Support/Escalation Management:
Represent security on Client calls or issues, as required.
Provide first line security advice, guidance and Policy and Standard support to Client teams.
Support the engagement of GSS services.
requirements-expected :
Broad experience of Information Security domains and operations.
Experience of designing and operating effective reporting to senior management.
Experience of Compliance assurance and Audit.
Team and people management (< 5 people).
Strong English communication skills.
Strong networking skills and comfortable working in a matrix virtual delivery model.
