Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support the Information Security manager in managing technology and cyber security risks.
- Company: Hastings Direct is a leading digital insurance provider in the UK, focused on innovation.
- Benefits: Enjoy flexible working, competitive bonuses, private medical insurance, and mental wellbeing support.
- Why this job: Join a dynamic team committed to high standards and making a positive impact in the community.
- Qualifications: A relevant IT or security degree and certifications like CISM or CISSP are desirable.
- Other info: 27 days annual leave, social events, and a culture that values diversity and inclusion.
The predicted salary is between 36000 - 60000 £ per year.
Welcome to Hastings Direct. We're a digital insurance provider with a clear strategy to become the best and biggest player in the UK market. As a company, we've made huge investments in our technology, pricing, data and analytics capabilities over the past few years, along with nurturing our 4Cs culture and substantial investment in our people.
As an Assurance, Risk and Compliance team, we're doing the same. You will be supporting the Information Security manager in assuring Hastings' compliance with its regulatory and legal obligations, by working with the business to help identify and manage our technology, information and cyber security risks. You'll also be supporting our Operational Resilience activities, undertaking due diligence on our third-party technology suppliers, and assisting with incidents and investigations. The role covers organisational security, people security, physical (site) security and technical security controls.
Skills Knowledge & Experience
- Cyber Security Knowledge: You’ll have a sound understanding of cyber and information security, including frameworks like NIST and ISO IEC 27002:202. It will be great if you also know about PCI-DSS V4.0 as well.
- Clear Communication: You’ll be able to discuss these with technical and non-technical stakeholders in a way which is accessible and understood.
- Threat landscape: You’ll understand the current threat landscape in respect of Cyber, Privacy and Security risks, and how that applies to a company like Hastings.
- Analytical thinking: You’ll be able to break down complex problems and be always looking for innovative, pragmatic solutions.
- Risk management: You’ll have a good understanding of how to assess and manage technology risk. Even better if you have a solid understanding of Enterprise-Wide Risk frameworks.
Qualifications
- A security certification such as CISM, CISMP, CISSP or equivalent would be desirable.
- A relevant IT or security-based degree or equivalent practical experience.
Reward
- Salary: Attractive salary based on experience car allowance (pay reviews also completed each year).
- Flexible Working: We champion a flexible and hybrid working approach so please speak to your recruiter to discuss in more detail, including days in the office and at home.
- Competitive Bonus Scheme: All colleagues are eligible for our annual 4Cs performance bonus, which is usually paid in March. The scheme is based on Hastings' performance against our business goals and your own personal performance.
- Physical Wellbeing: Hastings pay for you to receive private medical Insurance (also known as PMI) which gives you flexibility and convenience to see a specialist or consultant.
- Financial Wellbeing: We provide you with 4x your salary with our life assurance cover and income protection at no extra cost, pension contribution match up to 10%, and an AWARD WINNING package which includes discounts and cashback at everyday retailers.
- Mental Wellbeing programme: We have a range of support to help you keep yourself well, including the thrive mental health app, our colleague assistance programme available 24/7, and support groups.
- There’s more: 27 days annual leave bank holidays, with the option to buy or sell one of your contracted weeks, access to our health care cash back plans, dental plans, discounted health assessments, Cycle to work and tech schemes, and much more.
Hastings Group is an equal opportunities employer which means we treat people fairly. We welcome applications from all suitably skilled persons regardless of their gender, age, race, disability, ethnic background, religion/belief, sexual orientation, gender reassignment or marital/family status.
Please also note that we have a thorough referencing process, which includes credit and criminal record checks.
Technology Risk Executive employer: Hastings Direct
Contact Detail:
Hastings Direct Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Technology Risk Executive
✨Tip Number 1
Familiarise yourself with the specific frameworks mentioned in the job description, such as NIST and ISO IEC 27002:202. Being able to discuss these frameworks confidently during your interview will demonstrate your knowledge and commitment to the role.
✨Tip Number 2
Stay updated on the current threat landscape related to cyber security. Understanding recent trends and incidents can help you engage in meaningful conversations with the hiring team about how these threats could impact Hastings Direct.
✨Tip Number 3
Prepare to showcase your analytical thinking skills by discussing past experiences where you've successfully identified and managed technology risks. Use specific examples to illustrate your problem-solving abilities.
✨Tip Number 4
Practice clear communication techniques, especially when explaining complex security concepts to non-technical stakeholders. This skill is crucial for the role and will set you apart from other candidates.
We think you need these skills to ace Technology Risk Executive
Some tips for your application 🫡
Understand the Role: Before applying, make sure you fully understand the responsibilities and tasks associated with the Technology Risk Executive position. Familiarise yourself with the key skills and knowledge required, such as cyber security frameworks and risk management.
Tailor Your CV: Customise your CV to highlight relevant experience and skills that align with the job description. Emphasise your understanding of cyber security, analytical thinking, and risk management, ensuring these are clearly visible to the hiring team.
Craft a Compelling Cover Letter: Write a cover letter that showcases your enthusiasm for the role and the company. Discuss how your background and skills make you a great fit for Hastings Direct, and mention any specific experiences that relate to the responsibilities outlined in the job advert.
Proofread Your Application: Before submitting your application, take the time to proofread all documents. Check for spelling and grammatical errors, and ensure that your information is clear and concise. A polished application reflects your attention to detail and professionalism.
How to prepare for a job interview at Hastings Direct
✨Understand Cyber Security Frameworks
Familiarise yourself with key frameworks like NIST and ISO IEC 27002:202. Be prepared to discuss how these frameworks apply to the role and demonstrate your knowledge of PCI-DSS V4.0 if possible.
✨Communicate Clearly
Practice explaining complex cyber security concepts in simple terms. You’ll need to communicate effectively with both technical and non-technical stakeholders, so clarity is key.
✨Stay Updated on Threat Landscapes
Research current trends in cyber threats, privacy, and security risks. Being able to relate these trends to Hastings Direct will show your understanding of the industry and its challenges.
✨Showcase Analytical Thinking
Prepare examples of how you've approached complex problems in the past. Highlight your ability to break down issues and propose innovative solutions, as this is crucial for managing technology risk.
