Information Technology Security Officer
Role details
Job location
Tech stack
Job description
Information Technology Security Officer is a critical, strategic role for someone with technical and practical expertise who can confidently lead the organisation's cyber security agenda.
As ITSO, you will be the go-to authority on cyber security, responsible for safeguarding our digital infrastructure, data, and services. You will shape and deliver a forward-thinking cyber strategy that ensures resilience, regulatory compliance, and a strong security culture across the Lexham Group.
The ITSO will work closely with the IT team, Compliance, Legal Counsel, and group-level external partners to ensure robust incident response, robust auditing lifecycle and regulatory alignment., * Lead the development, implementation, and continuous improvement of the Lexham Group's cyber security strategy.
- Act as the senior accountable executive for cyber risk, compliance, and incident response.
- Advise executive leadership, and trustees on cyber threats, risks, and mitigation strategies.
- Embed a cyber-aware culture across the organisation through training, awareness campaigns, and policy enforcement.
- Maintain oversight of KPIs, threat intelligence, and incident response protocols.
- Lead the development and enforcement of IT security policies and procedures.
- Conduct audits, gap analyses, and risk assessments across the Lexham Group.
· Any other duties commensurate with the level of responsibility of this role.
Requirements
Do you have experience in NIST standards?, * Hold at least one professional certification (e.g. CISSP, CISM, CRISC).
- Deep understanding of cyber security frameworks and standards (e.g. NIST, ISO 27001) and incident response protocols.
- Strategic thinker with a proactive approach to risk management.
- Ability to work under pressure and manage multiple priorities.
- Proven experience in IT security, ideally within insurance or financial services.
