Information Assurance Manager

London, UK
Technology – Security
Full-Time
Technology. Award-winning customer service. Bleeding-edge data ability.

Simply Business is a new type of insurance company, using all of the above to create the best possible insurance experience for small businesses and self-employed people.

We love working here, and have even taken the number one spot in the Sunday Times Best Company To Work For 2015 and 16 lists; we’ve stopped entering now to focus on a few bigger projects, but you get the idea.

It’s a great place to work.

There are currently over 500,000 active Simply Business insurance policies in the UK alone. And we have offices in London, Northampton and Boston, USA.

Talking of offices, ours are bright, airy and geared up for really smart working. We’re flexible, with plenty of remote workers coming in and out, and we believe work and life should be hand in hand, rather than a juggling act. So no need to worry about school pick-ups, or a horrible commute.

Our people are our most important asset, so we focus on building a working  life that helps us thrive, not stick. Join us and you’ll be part of our journey  to creating something even better, for our customers and ourselves.

We need an Information Assurance Manager to join the InfoSec team in London. Reporting to the CISO, you will manage the assurance team and be part of the Security Leadership team.

As an Information Assurance Manager you will have:

    • strong team leadership abilities and the ability to influence
    • previous experience in a combination of risk management, assurance, information security and IT roles
    • previous experience with contract and vendor negotiations
    • knowledge of security and control frameworks such as CIS, ISO 27001 and PCI DSS
    • CISSP, CISM or other information security credentials (desirable but not essential)
    • broad knowledge of IT architecture and underpinning technologies (including cloud services)
    • knowledge of technological trends and developments in the area of Information Security and Risk Management
    • excellent written and verbal communication skills with the ability to communicate security and risk-related concepts to technical and non-technical audiences
    • a high level of personal integrity and the ability to handle confidential matters

Responsibilities include:

    • team management, ensuring strong communication, collaboration and people development
    • maintaining assurance roadmap as part of the leadership team and supporting the CISO with strategy development
    • being the processing owner of all ongoing activities of the assurance team including audit, security awareness, risk management, business continuity and policy lifecycle management
    • identifying, evaluating and reporting on information security risks in a manner that meets business, compliance and regulatory requirements
    • working with the business to implement practices that meet defined policies and standards for information security
    • external and internal audit oversight
    • governance, risk and compliance – control evaluation and reporting activities
    • facilitating information security risk assessment process, including reporting and oversight of remediation efforts
    • ensuring management are aware of any security implications that would impact the business and customers
    • reviewing emerging threats and industry trends to ensure that assurance capabilities remain effective and relevant
What are the benefits?

There’s all the serious (but important) stuff we call ‘core benefits’. On top of that, you can pick and choose from the more exciting options we offer – whether it’s a full gym membership or gym subsidy, comprehensive private health cover, extra holiday, or a National Trust pass. 

The ‘core’ stuff
Some of these will kick in once you’re confirmed in post, but here’s the summary:
• a salary that reflects your experience, our pay policy and the market we’re in from your first day, generous annual leave
• life assurance (financial cover for your family, should the worst happen)
• a cash plan to reimburse your everyday medical expenses
• an extra day off if you get married or move house
• an automatic enrollment pension (employer-matched at 5%) 

The fun stuff
Passed probation? Time to pick and mix from things like:
• a full gym membership
• private medical insurance
• extra days annual leave
• shopping vouchers
• dental insurance
• travel insurance

But there’s so much more to Simply Business than insurance and memberships. We also commit to flexible working options, smart working (our offices are kitted out for you to work when and how you choose), cycle to work, eye test vouchers, and season ticket loan schemes, and we have a handy online form to put in any training or conference requests.

Best of all, though, are the groups, clubs, and adventures that come with the Simply Business territory. Forget a simple Give As You Earn scheme (although we’ve got that too) – we trek the Sahara for charity, take you on weekends away, throw epic summer parties, and meet up for book groups, public speaking coaching, yoga, manicures, beer brewing, and lots, lots more.

Our values

Everything we do comes down to these five values – empowerment, authenticity, simplicity, learning and pioneering.

In practice, these will mean something unique to every  person at Simply Business, but if you’re considering working here, give them some thought. They’re at the heart of our story.

Empowerment
We believe in our people and the positive impact they can have so we enable everyone to stretchthemselves

Authenticity
We celebrate diversity, avoid jargon and genuinely care about helping small businesses thrive

Simplicity
We attempt to simplify complex solutions to save our customerstime andeffort

Learning
We’re never done learning about new possibilities and act to explore them

Pioneering
We’re obsessed with finding new ways to create even better  experiences