Technology Risk Executive

Welcome to Hastings Direct

Were a digital insurance provider with a clear strategy to become the best and biggest player in the UK market. As a company weve made huge investments in our technology pricing data and analytics capabilities over the past few years along with nurturing our 4Cs culture and substantial investment in our people. And as an Assurance Risk and Compliance team were doing the same. The fact youre now reading this job advert means weve tempted you to find out more about #lifeatHD. If you like what you see we hope youll consider joining our team.

We have high standards and understand some people may not apply for jobs unless they feel they tick every box. If youre excited about joining us and think you have some of what we are looking for even if youre not 100 sure we would love to hear from you.

Role overview

You will be supporting the Information Security manager in assuring Hastings compliance with its regulatory and legal obligations by working with the business to help to identify and manage our technology information and cyber security risks.

Youll also be supporting our Operational Resilience activities undertaking due diligence on our thirdparty technology suppliers and assisting with incidents and investigations.

The role covers organisational security people security physical (site) security and technical security controls.

Skills Knowledge & Experience

• Cyber Security Knowledge Youll have a sound understanding of cyber and information security including frameworks like NIST and ISO IEC 27002:202. It will be great if you also know about PCIDSS V4.0 as well.

• Clear Communication Youll be able to discuss these withtechnical and nontechnical stakeholders in a way which is accessible and understood.

• Threat landscape Youll understand the current threat landscape in respect of Cyber Privacy and Security risks and how that applies to a company like Hastings.

• Analytical thinking Youll be able to break down complex problems and be always looking forinnovative pragmatic solutions.

• Risk management Youll have a good understanding of how to assess and manage technology risk. Even better if you have a solid understanding of EnterpriseWide Risk frameworks.

Qualifications

• A security certification such as CISM CISMP CISSP or equivalent would be desirable.

• A relevant IT or securitybased degree or equivalent practical experience.

Reward

Salary Attractive salary based on experience car allowance (pay reviews also completed each year)

Flexible Working We champion a flexible and hybrid working approach so please speak to your recruiter to discuss in more detail including days in the office and at home.

Competitive Bonus Scheme All colleagues are eligible for our annual 4Cs performance bonus which is usually paid in March. The scheme is based on Hastings performance against our business goals and your own personal performance.

Physical Wellbeing as a Band 4 colleague Hastings pay for you to receive private medical Insurance (also known as PMI) This gives you flexibility and convenience to see a specialist or consultant and allows you to decide when and where you will be seen.

Financial Wellbeing As well as providing you with 4x your salary with our life assurance cover and income protection at no extra cost pension contribution match up to 10 we are proud to provide you with an AWARD WINNING package which includes discounts and cashback at everyday retailers and on our own products fee free independent mortgage advice and free access to financial wellbeing support.

Mental Wellbeing programme At Hastings Direct we understand that mental health cannot not be scheduled thats why we have a range of support to help you keep yourself well. We have the thrive mental health app our colleague assistance programme available 24/7 our own inhouse mental health first aiders support groups and a dedicated team to make sure we are covering your needs

Theres more! 27 days annual leave bank holidays with the option to buy or sell one of your contracted weeks access to our health care cash back plans dental plans discounted health assessments Cycle to work and tech schemes discounted and free onsite facilities social events throughout the year and much more .

Our 4Cs principles are simple: we believe by creating the right culture for our colleagues and giving them the right tools to do their job well deliver good outcomes for every customer helping us to grow the company profitably and sustainably and allowing us to invest in the communities we serve.