Director, Bureau of Governance & Policy Support

Security Director – EMEA Regional Security Officer Organisation Reporting to the EMEA Regional Security Officer, this role is key in managing the regional and solution line operational security risk level to within acceptable levels via leading remediation programs and deployment of Global Security Services (GSS) controls. The role will act as a key contact for all matters relating to Cyber Security and requires a broad understanding of security controls and their effective implementation within corporate environments. The role will also require good relationship management skills across the assigned region/sub-region to enable business adoption. As a Director within the Regional Security Office (RSO) service, you will be accountable for service delivery to the assigned region/sub-region and solution lines. The role will need to have effective relationships with senior leadership to support the delivery of the regional/sub-regional business goals and operate an effective security risk management regime against an agreed security risk mitigation strategy. As the trusted security lead, the role will present to local leaders, regulators, and clients as needed. Prior experience of regulatory management is required. This is a highly visible role within Aon to be able to embed effective security controls at scale within the firm. We are looking for you to bring new ideas and a commitment toward continual learning. You will stay actively engaged with business leaders, IT executives, and external clients. The role requires gravitas and an ability to be influential and persuasive. What the day will look like The RSO service provides a regional/sub-regional/solution line connection to GSS Security Services to ensure they are appropriately leveraged to mitigate security risks and provides the following security services: Security Leadership: Provide Security reporting to leadership committees and Boards. Represent Security to appropriate Regulatory bodies. Own the Security strategy for the assigned area, manage its delivery via leverage of GSS services, and accelerate local control adoption. Own the colleague security culture programme. Represent the region/sub-region in the Security Incident Management process. Remediation Management, e.g., Internal Audit findings. Security Compliance and Conduct management. Security Risk Management: Managing a Security Risk committee to support cyber risk management. Track remediation of Security Audit and Compliance findings. Review Security Metrics and lead remediation programs within the region/sub-region. Lead or Sponsor Security initiatives within area of accountability. In conjunction with Data Privacy ensure necessary security controls are in place. GSS Service Delivery Management: Manage GSS Service delivery escalations. Support GSS project implementation within the assigned area of accountability. Contribute to the ‘voice of the Business’ in development of GSS service enhancements. Security Intake & Relationship Management. Regulatory & Compliance Assessment Support. Continuity and Disaster Recovery Support. Data Governance Support. Client Support/Escalation Management: Represent Security on Client calls or escalations. Provide first line security advice, guidance, and Policy and Standard support to Client teams. Support the engagement of GSS services via the correct process. Skills and experience that will lead to success: Broad Cyber Security knowledge and experience of implementing and operating an effective control regime in a large, complex corporate environment. Solid knowledge and understanding of Cyber Security domains, including application security, vulnerability management, network and cloud security, security operations (incident management), physical security, supplier risk management, and cyber awareness. Experience of effective Cyber Risk Management within a large corporate environment. Fostering strong partnerships by influencing and building effective relations with diverse stakeholders at a range of seniority, up to and including C-level. Exceptional communication skills, with the ability to communicate to a diverse range and seniority of stakeholders, including technical and non-technical audiences. Demonstrable regulatory management experience. Experience of Compliance assurance and Audit practice is desirable. Security certification (CISSP, CISM) is an advantage. Understanding and experience of delivering compliance standards, including Sarbanes Oxley (404), ISO27001, and Cyber Essentials+. How we support our colleagues: In addition to our comprehensive benefits package, we encourage a diverse workforce. Plus, our agile, inclusive environment allows you to manage your wellbeing and work/life balance, ensuring you can be your best self at Aon. Furthermore, all colleagues enjoy two “Global Wellbeing Days” each year, encouraging you to take time to focus on yourself. We offer a variety of working style solutions, but we also recognize that flexibility goes beyond just the place of work… and we are all for it. We call this Smart Working! Our continuous learning culture inspires and equips you to learn, share, and grow, helping you achieve your fullest potential. As a result, at Aon, you are more connected, more relevant, and more valued. Aon values an innovative, diverse workplace where all colleagues feel empowered to be their authentic selves. Aon is proud to be an equal opportunity workplace. Aon provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, veteran, marital, domestic partner status, or other legally protected status. We welcome applications from all and provide individuals with disabilities with reasonable adjustments to participate in the job application, interview process, and to perform essential job functions once onboard. If you would like to learn more about the reasonable accommodations we provide, email ReasonableAccommodations@Aon.com #LI-JK1 #LI-HYBRID #J-18808-Ljbffr