Technology Risk Executive
Welcome to Hastings Direct
We’re a digital insurance provider with a clear strategy to become the best and biggest player in the UK market. As a company, we’ve made huge investments in our technology, pricing, data and analytics capabilities over the past few years, along with nurturing our 4Cs culture and substantial investment in our people. And as an Assurance, Risk and Compliance team, we're doing the same. The fact you’re now reading this job advert means we’ve tempted you to find out more about #lifeatHD. If you like what you see, we hope you'll consider joining our team.
We have high standards and understand some people may not apply for jobs unless they feel they tick every box. If you’re excited about joining us and think you have some of what we are looking for, even if you’re not 100% sure, we would love to hear from you.
Role overview
You will be supporting the Information Security manager in assuring Hastings’ compliance with its regulatory and legal obligations, by working with the business to help to identify and manage our technology, information and cyber security risks.
You’ll also be supporting our Operational Resilience activities, undertaking due diligence on our third-party technology suppliers, and assisting with incidents and investigations.
The role covers organisational security, people security, physical (site) security and technical security controls.
Skills Knowledge & Experience
Cyber Security Knowledge – You’ll have a sound understanding of cyber and information security, including frameworks like NIST and ISO IEC 27002:202. It will be great if you also know about PCI-DSS V4.0 as well.
Clear Communication -You’ll be able to discuss these with technical and non-technical stakeholders in a way which is accessible and understood.
Threat landscape – You'll understand the current threat landscape in respect of Cyber, Privacy and Security risks, and how that applies to a company like Hastings.
Analytical thinking - You’ll be able to break down complex problems and be always looking for innovative, pragmatic solutions.
Risk management – You’ll have a good understanding of how to assess and manage technology risk. Even better if you have a solid understanding of Enterprise-Wide Risk frameworks.
Qualifications
A security certification such as CISM, CISMP, CISSP or equivalent would be desirable.
A relevant IT or security-based degree or equivalent practical experience.
Reward
Salary – Attractive salary based on experience + car allowance (pay reviews also completed each year)
Flexible Working – We champion a flexible and hybrid working approach so please speak to your recruiter to discuss in more detail, including days in the office and at home.
Competitive Bonus Scheme - All colleagues are eligible for our annual 4Cs performance bonus, which is usually paid in March. The scheme is based on Hastings’ performance against our business goals and your own personal performance.
Physical Wellbeing – as a Band 4 colleague, Hastings pay for you to receive private medical Insurance (also known as PMI) This gives you flexibility and convenience to see a specialist or consultant and allows you to decide when and where you will be seen.
Financial Wellbeing – As well as providing you with 4x your salary with our life assurance cover and income protection at no extra cost, pension contribution match up to 10%, we are proud to provide you with an AWARD WINNING package which includes – discounts and cashback at everyday retailers and on our own products, fee free independent mortgage advice, and free access to financial wellbeing support.
Mental Wellbeing programme – At Hastings Direct we understand that mental health cannot not be scheduled, that’s why we have a range of support to help you keep yourself well. We have the thrive mental health app, our colleague assistance programme available 24/7, our own, in-house mental health first aiders, support groups and a dedicated team to make sure we are covering your needs
There's more! – 27 days annual leave + bank holidays, with the option to buy or sell one of your contracted weeks, access to our health care cash back plans, dental plans, discounted health assessments, Cycle to work and tech schemes, discounted and free onsite facilities, social events throughout the year and much more ….
Our 4Cs principles are simple: we believe by creating the right culture for our colleagues and giving them the right tools to do their job, we’ll deliver good outcomes for every customer, helping us to grow the company profitably and sustainably and allowing us to invest in the communities we serve.
At Hastings Direct, we’re committed to creating an inclusive environment where everyone has the opportunity to succeed. If you require any reasonable adjustments during the recruitment process, we encourage you to be open with us. Our recruitment team is here to provide the support you need to ensure a fair and accessible experience for all.
Job posting end date:
04/05/2025Average salary estimate
If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.
Welcome to Hastings Direct, where we're not just a digital insurance provider; we're on a mission to redefine the UK market! As a Technology Risk Executive, you'll play a crucial role in our Assurance, Risk, and Compliance team, supporting our Information Security Manager to ensure we meet our regulatory and legal obligations. Think of yourself as the gatekeeper of our technology, information, and cyber security risks. Your work will be pivotal in assessing potential threats and ensuring our operational resilience through diligent management of third-party suppliers and tackling incidents with a proactive mindset. If you have a strong grasp of cyber security—from NIST to PCI-DSS V4.0—and the ability to communicate complex ideas simply, we want you on our team! At Hastings, we value analytical thinkers who constantly seek innovative solutions to challenges. Your background in risk management will be invaluable as you help safeguard our organization. We believe in providing our employees with a culture that fosters growth, which is why we offer a flexible working environment, competitive salary packages, and numerous perks to promote well-being. Whether you're engaging with diverse stakeholders or navigating the ever-evolving cyber landscape, your contributions will directly impact our success. We're excited for you to explore #lifeatHD and hope you’ll join us on this adventure!
Join Solace as a Lead Security Engineer and help build a secure healthcare advocacy platform that impacts patient outcomes.
As a Senior Cybersecurity Risk Analyst, you will lead initiatives to protect military systems by implementing cutting-edge security solutions.
Join Anduril Industries as a Security Engineer specializing in Mergers & Acquisitions to fortify security during the integration of acquired companies.
Broadway Gaming seeks a talented Dev Ops engineer to orchestrate containerized applications and automate infrastructure provisioning.
Seeking an enthusiastic IT Architecture Intern to work alongside experienced professionals at Eversource Energy in Berlin, CT.
TechEdge seeks a Systems Operations Engineer to enhance operational support for its media-focused services in Miami.
Citi seeks an experienced Director for the Enterprise Risk Technology Data Lead position to manage Data Use Cases across risk management functions.
Subscribe to Rise newsletter
🔮
Hi, I'm Risa! Your AI Career Copilot
you, just ask me below!
Sign up for our weekly
newsletter of fresh jobs
