Security Governance, Risk & Compliance Manager

Helping over ten million people around the world manage their savings, retirement plans and life insurance requires a lot of people behind-the-scenes.  It’s up to us in L&G Group functions – which includes our tech and digital teams, Group Finance, HR, Risk and Corporate Comms to provide the essential support services that all areas of the business need, here in the UK and overseas. Simply put, we enable everyone at Legal & General to do what they do best. That means we’re helping to improve our customers’ lives, and contributing to the success of the business every day.

We’re looking for a Security Governance, Risk & Compliance Manager to join us in either London, Hove or Cardiff!

As part of a newly-formed pillar within this team you’ll support the Head of Group Security Strategy, Policy & Governance in ensuring the Group’s security posture remains within robust and compliant with industry standards and regulations. You’ll also lead the Group Technology Security Risk meeting and will support across all global entities and teams (e.g., HR, 2nd line) to ensure the successful embedding of security governance, risk and compliance, across the Group. 

What you’ll be doing

• Supporting the end-to-end management of the Group Technology security risk environment and internal security control framework; assisting risk and control owners in mitigating/resolving cyber and information security risk and control weaknesses ensuring that the Group continues to operate within risk appetite and regulations
• Supporting the development and maintenance of the Group’s security governance framework including policies and standards to ensure alignment to industry best practices, regulations and risk appetite
• Coordinating with internal stakeholders to support divisions in ensuring that security controls are effectively implemented and integrated into business processes and systems
• Implementing appropriate governance, reporting and escalation of changes impacting customers to ensure key checkpoints are met in line with stakeholder and business requirements whilst supporting the Group CISO and Head of Group Security Strategy, Policy & Governance in overseeing cyber and information security risk
• Overseeing the management and maintenance of the Group’s ISMS ensuring the Group remains in compliance with ISO 27001 requirements within the scope of the Group’s certification
• Routinely engaging with first line risk functions, and with the IT Controls testing function, to support accurate management and reporting of security risk and controls activity. Routinely engaging with second and third line risk functions to improve the management of risk across the Group and the effective closure of audit findings
• Serving as a subject matter expert on security related risk matters, providing support to the Group CISO team, and, where required, staying abreast of emerging threats, vulnerabilities and incidents
• Managing the team in accordance with the Company’s policies and procedures, including the Partnership Agreement, so that the team’s business objectives are achieved consistently

What we’re looking for

• Naturally, you’ll be well versed in cyber security risk management, ideally within an enterprise environment
• You’ll also have strong knowledge of technical frameworks including NIST/ISO27001
• A good understanding of general security practices such as encryption, IAM, security information and event management etc. and supporting technologies, although you don’t have to be “hands-on” with these practices
• Experience in producing and communicating security policies to a wide audience
• Experience in chairing effective governance meetings

When you commit to Legal & General, we’ll commit to you too. That means we’ll recognise and reward your hard work, your performance and your contribution.

If you join us, you’ll get access to some great benefits, including private medical insurance, 27 days holiday (excluding bank holidays), a generous pension scheme, life assurance, and Income Protection. You can participate in our electric car scheme, which offers employees the option to hire a brand new electric car through tax efficient salary sacrifice. We’re also proud to offer competitive family leave.

You’ll have the opportunity to participate in our annual, performance-related bonus plan and valuable share schemes. And then there are the many discounts we offer that you can take advantage of – both for our own products and at a range of high street stores and online offerings.

The brand with the brolly is choosing today to change tomorrow.

Since 1836, we’ve grown to become one of the world's largest asset managers, homebuilders, pension providers and insurance brands. 

We’re all here to improve the lives of our customers, build a better society for the long term, and create value for our shareholders - helping to shape a better future for society and the planet.

We need people who share our ambitions, agility and entrepreneurial spirit to help us do it.

At L&G, you’ll find a balance that helps you be your best. Empowered by hybrid working, we’re supported by technology and workplaces that enable us to work effectively wherever we are. We come together in offices to collaborate and connect, and use time at home for individual, focused activities. And, when we achieve great things, we celebrate our success and reward strong performance.

Today, there’s over 10,000 of us, working towards our mission, with plenty of opportunities to grow your career as we grow L&G. Will you join us?

Great minds don’t have to think alike, so we welcome voices from all backgrounds. Bringing together people with different life experiences helps us build empathy with our customers and drive innovation.

We don’t just talk about it, we actively promote diversity and equitable opportunities for all. That means our employment decisions are made without regard to race, colour, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability or protected veteran status. In fact, we embrace every dimension of diversity to reflect the customers and communities we serve.

We think it’s important to create an inclusive environment where we can all belong, contribute and drive progress, where you can develop and grow, and be empowered. We want you to use your voice to help us build a better tomorrow.

We all work differently, and have different needs, which is why. we’re always open to discussing flexible working arrangements. Likewise, we’re committed to finding reasonable accommodations for candidates with specific needs during our recruiting process.

So whoever you are, wherever you are, whatever your story, we'd love to hear from you.