Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead a team to manage information security and compliance activities.
- Company: Join a dynamic company focused on cyber security and risk management.
- Benefits: Enjoy a competitive salary, flexible working options, and professional development opportunities.
- Why this job: Make a real impact in cyber security while collaborating with diverse teams.
- Qualifications: Proven leadership in information security and strong communication skills required.
- Other info: This is a 12-month fixed-term contract based in London.
The predicted salary is between 72000 - 100000 £ per year.
Reports to: Global CISO
Location: London
Summary of Position: This position will report directly to the global CISO and be responsible for managing a small in-house team that plans, schedules, monitors, and reports on activities related to information and cyber security. The role will collaborate with Information Technology, Group Risk and Compliance, HR, Facilities, and third parties.
Key Responsibilities & Accountabilities:
- Support the Global CISO in maintaining and implementing the cyber security strategy
- Take overall responsibility for information security risk and compliance
- Manage the BMS Information Security Control Framework
- Develop and maintain the Information Security governance and oversight target operating model
- Create policies and supporting governance materials
- Own the Information Security Risk management processes
- Identify information security threats and coordinate with technical teams to understand BMS exposure
- Provide specialist Information Security input to IT and business operations
- Ensure information security initiatives are current and security risks are identified and managed
- Investigate, analyze, and review Information Security breaches, including near misses, and recommend control improvements
- Build strong relationships with key internal users, senior managers, and external suppliers
- Coordinate security plans with third-party vendors and ensure security service outputs are acted upon
- Manage cyber events, including notification, escalation, response, and post-incident review
- Adhere to company and regulatory policies, procedures, and mandatory training
Information Security Experience:
- Experience managing information security services related to service design and ongoing management
- Experience developing and maintaining security controls, compliance monitoring, and treatment strategies
- Knowledge of Information Security risk management concepts
- Experience with Information Security transformation programmes
- Experience supporting incident management frameworks
- Knowledge of security frameworks such as NIST CSF/ISO-27001
Functional & Behavioural Competencies:
- Proven leadership skills in a similar Information Security role
- Experience in nurturing and retaining talent
- Proven experience in information security
- Excellent writing and communication skills
- Experience in third-party supplier and vendor management
- Ability to manage multiple issues and prioritize effectively
- Understanding of culture change techniques for security improvements
- Ability to assess implications of process changes on business strategies
- Capability to manage incident processes and coordinate sensitive investigations
- Demonstrate the five BMS values and ensure team alignment: Accountable, Entrepreneurial, Collaborative, Empowering, Disciplined
Head of Governance, Risk and Compliance - Info Sec - 12 Month FTC employer: AXA UK
Contact Detail:
AXA UK Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Head of Governance, Risk and Compliance - Info Sec - 12 Month FTC
✨Tip Number 1
Network with professionals in the information security field, especially those who have experience in governance, risk, and compliance. Attend industry events or webinars to connect with potential colleagues and learn about the latest trends and challenges in the sector.
✨Tip Number 2
Familiarise yourself with the specific security frameworks mentioned in the job description, such as NIST CSF and ISO-27001. Being able to discuss these frameworks in detail during interviews will demonstrate your expertise and commitment to the role.
✨Tip Number 3
Prepare to showcase your leadership skills by gathering examples of how you've successfully managed teams or projects in the past. Highlight your ability to nurture talent and drive cultural change within an organisation, as these are key competencies for this position.
✨Tip Number 4
Research the company’s current information security initiatives and any recent news related to their cyber security efforts. This knowledge will not only help you tailor your discussions but also show your genuine interest in contributing to their goals.
We think you need these skills to ace Head of Governance, Risk and Compliance - Info Sec - 12 Month FTC
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in governance, risk, and compliance, particularly in information security. Use specific examples that demonstrate your leadership skills and familiarity with security frameworks like NIST CSF or ISO-27001.
Craft a Compelling Cover Letter: In your cover letter, address how your background aligns with the key responsibilities of the role. Emphasise your experience in managing information security services and your ability to build strong relationships with stakeholders.
Showcase Your Communication Skills: Since excellent writing and communication skills are crucial for this position, ensure your application is clear, concise, and free of errors. Use professional language and structure your documents logically.
Highlight Relevant Certifications: If you have any certifications related to information security, governance, or risk management, be sure to include them in your application. This can set you apart from other candidates and demonstrate your commitment to the field.
How to prepare for a job interview at AXA UK
✨Understand the Cyber Security Strategy
Make sure you have a solid grasp of the company's cyber security strategy. Be prepared to discuss how your experience aligns with their goals and how you can contribute to maintaining and implementing this strategy effectively.
✨Showcase Your Leadership Skills
As a Head of Governance, Risk and Compliance, demonstrating your leadership abilities is crucial. Prepare examples of how you've successfully managed teams in the past, nurtured talent, and driven initiatives that align with information security objectives.
✨Familiarise Yourself with Relevant Frameworks
Brush up on security frameworks like NIST CSF and ISO-27001. Be ready to discuss how you've applied these frameworks in previous roles and how they can be integrated into the company's existing processes.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-world situations. Think about past incidents you've managed, how you coordinated responses, and what improvements you recommended to prevent future breaches.
