Information Security, Governance Risk and Compliance LeadPosted: 05/09/2024
Closing Date: 22/09/2024
Job Type: Permanent - Full Time
Location: Auckland - Fidelity Life House
Job Category: Information Technology
About Us: Fidelity Life is New Zealand's largest locally owned and operated life insurer. We have a clear, winning aspiration, built around transforming our industry through a customer lens. We are dedicated to providing comprehensive financial security solutions that are tailored to meet the diverse needs of our clients. As a leader in our field, we pride ourselves on our commitment to innovation, integrity, and excellence. We are seeking a skilled and motivated Information Security Governance, Risk and Compliance Manager to join our team and play a pivotal role in safeguarding our organization's information assets.
Role Overview: As the Information Security Governance, Risk and Compliance Manager, you will be at the forefront of defining, implementing, and leading our Information Security Governance, Risk, and Compliance function. Your role will be crucial in aligning our information security strategy with business objectives, ensuring compliance with relevant laws and regulations, and maintaining a robust information security policy framework.
Job DescriptionKey Responsibilities: Information Security Governance: Develop and maintain a framework to ensure that the information security strategy is aligned with business objectives and compliant with applicable laws. Lead the creation and delivery of an information security awareness program and manage cyber security champions.Information Security Risk: Foster a culture of security risk awareness within the organization. Act as the subject matter expert on security controls and work closely with the risk team in alignment with our risk framework.Information Security Compliance: Drive security compliance efforts across the business. Develop and manage a security compliance plan, maintain the Information Security Dashboard, and collaborate with internal and external auditors on security-related audits.Health and Safety: Adhere to health and safety policies, ensure your own safety and that of others, provide training on hazards, and support rehabilitation and return-to-work processes.Risk and Compliance: Promote proactive risk management and a commitment to compliance. Ensure that risk management practices are communicated and adhered to throughout the organization.Desired Skills and ExperienceWhat We're Looking For: Qualifications: Minimum of 5 years' experience in an Information Security GRC role with recent certifications related to Information Security management.Experience: Proven track record in implementing frameworks such as ISO 27001 and PCI-DSS. Knowledge of risk management frameworks like ISO 31000 and ISO 27005, and a strong understanding of the NIST Cyber Security Framework. Experience working with auditors and delivering customer outcomes effectively.Skills: Ability to identify and resolve gaps in processes, develop strong stakeholder relationships, work collaboratively, create and manage dashboards, and report on security metrics.Why Join Us? At Fidelity Life, we offer a dynamic work environment where you can make a significant impact. Join us and contribute to our mission of providing exceptional security solutions while advancing your career in a supportive and innovative organization.
Apply Now: If you are ready to take on this exciting challenge and meet the qualifications above, we want to hear from you! Please apply now and we will be in touch soon.
Fidelity Life is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
#J-18808-Ljbffr