Cyber Security Controls Lead (12 Month Fixed Term Contract)

Willis Towers Watson ,
Ipswich, Suffolk

Overview

Job Description

The Role Willis Towers Watson (WTW) Information & Cyber Security (ICS) requires a Cloud Security Control Lead to ensure consistency in the migration of security controls into the Cloud. As a highly experienced Subject Matter Expert in Cloud security requirements across the different service models (SAAS, PAAS & IAAS) you will lead a small team in engaging with the business and ICS to ensure controls are migrated appropriately in accordance with regulatory requirements (SOx & SOC 2). You will own the plans surrounding the approach to migration as a key requirement in order to achieving regulatory compliance and be well versed in industry best practice/CSA, CCM frameworks. You will report to the Global Head of ICS Compliance & Controls. The normal working base location will be Reigate or Ipswich. This will be a 12-month fixed term contract with opportunity to extend. * Be the operational lead for Cloud Security control requirements. * Engage with both Internal and external audit agencies, the business segment ICS leads and other GRC Pillars. * Own the centralized Cloud Control Migration Plan. * Produce timely metrics to support governance reporting requirements. * Produce innovative plans on how to be more proactive to regulatory challenges as an organization. * Respond to priority requirements as directed by the Head of C&C/Director GRC. The Requirements * Excellent business engagement skills. * Holistic knowledge of Cloud Security Requirements. * Rich experience with use of CSA & CMM frameworks. * broad understanding of Regulatory Requirements; SOx, SOC 2 ISO27K etc. * Experienced leader in ICS/Technology disciplines. * Educated to degree level or equivalent experience. * Preferably holding one of the following qualifications: CISSP, CCSP, AWS Security Certified, CISM, (although not essential). Equal opportunity employer