Information Security Manager

The PPMG Operations team is looking to recruit a motivated individual who is able to provide first line support to the business in all aspects of information security. As PPMG is a relatively small business unit, there is scope within this role to play a leading or supporting role on a range of technology projects and develop further industry knowledge through performing other general operations tasks. PPMG has a strong focus on developing its people, and the successful candidate will also be able to benefit from support for professional qualifications and other learning opportunities.

Key Responsibilities

  • Provides oversight of all information risk management processes within PPMG, including software deployment and user access requests to systems, databases and documents
  • Ensures PPMG compliance with Prudential Group standards for Data, Information, Technology Security and Archiving
  • Manages annual technology and cloud computing attestation processes
  • Acts as the security subject matter expert for the development of PPMG's in house technology tools
  • Performs third party supplier Information Security due diligence
  • Promotes good security practices including the creation and delivery of Information Security training to meet business and Group governance requirements
  • Provides input to business continuity plans and processes including oversight of business technology provision
  • Provides technology and governance project support as required
  • Performs Information Security Incident management and investigations into breaches
  • Maintaining Joiner/leaver headcount monitoring processes to ensure appropriate access is promptly challenged/given/removed
  • Supports a number of other operations specific tasks and reporting including;
    • Manages business critical supplier reporting and the annual supplier scorecard process
    • Identifying of cost saving opportunities
    • Other operational compliance related tasks

Key Stakeholders

  • PPMG stakeholders across all business areas
  • Internal third party service providers
  • External third parties

Experience & Key Skills

  • Experience of working in information security/ information risk management
  • Able to act as a credible information security subject matter expert
  • Experience working within finance or professional services preferred
  • Experience of providing metrics and reporting to key stakeholders
  • Able to manage stakeholder engagement effectively
  • Experience of working on project or change management programmes
  • Able to drive and implement initiatives across the business with minimal oversight
  • Relevant industry recognised qualifications preferred (e.g. CISSP, CRISC)

PPMG is committed to a diverse and inclusive workplace. Our role as an employer is very simple - to provide the right environment for talented people to do their best work, by respecting, understanding and valuing individual differences.

We welcome applications from individuals who have taken an extended career break, and we are willing to consider flexible working arrangements for all of our roles.