Cyber Security Controls Lead (12 Month Fixed Term Contract)

Willis Towers Watson ,
Reigate, Surrey

Overview

Job Description

**The Role** Willis Towers Watson (WTW) Information & Cyber Security (ICS) requires a Cloud Security Control Lead to ensure consistency in the migration of security controls into the Cloud. As a highly experienced Subject Matter Expert in Cloud security requirements across the different service models (SAAS, PAAS & IAAS) you will lead a small team in engaging with the business and ICS to ensure controls are migrated appropriately in accordance with regulatory requirements (SOx & SOC 2). You will own the plans surrounding the approach to migration as a key requirement in order to achieving regulatory compliance and be well versed in industry best practice/CSA, CCM frameworks. You will report to the Global Head of ICS Compliance & Controls. The normal working base location will be Reigate or Ipswich. This will be a 12-month fixed term contract with opportunity to extend. + Be the operational lead for Cloud Security control requirements. + Engage with both Internal and external audit agencies, the business segment ICS leads and other GRC Pillars. + Own the centralized Cloud Control Migration Plan. + Produce timely metrics to support governance reporting requirements. + Produce innovative plans on how to be more proactive to regulatory challenges as an organization. + Respond to priority requirements as directed by the Head of C&C/Director GRC. **The Requirements** + Excellent business engagement skills. + Holistic knowledge of Cloud Security Requirements. + Rich experience with use of CSA & CMM frameworks. + broad understanding of Regulatory Requirements; SOx, SOC 2 ISO27K etc. + Experienced leader in ICS/Technology disciplines. + Educated to degree level or equivalent experience. + Preferably holding one of the following qualifications: CISSP, CCSP, AWS Security Certified, CISM, (although not essential). **Equal opportunity employer**