Description

Why Tokio Marine HCC?

Standing still is not an option in the current world of Insurance. TMHCC are one of the world’s leading Speciality Insurers. With deep expertise in our chosen lines of business, our unparalleled track record and a solid balance sheet, TMHCC evaluates and manages risk like no one else in the industry. Looking beyond profit, empowering our people and delivering on our commitments are at the core of our customer values, and so is a desire to grow and provide creative and innovative solutions to our clients. We have doubled our gross written premiums in the past 3 years and our plan is to do so again in the next 3 years. To support this desire, we need to be forward-thinking and innovative in every respect. That means continually improving our customer-focused business, it means providing systems, solutions and technology to enable seamless growth and business innovation, and it means having the best people capability to apply to these challenges.

Part of our evolution involves growing our team, and bringing in a range of views, perspectives and backgrounds that will allow us to deliver this forward-looking culture, that relies upon open and trusting relationships, and a shared vision for that continual improvement. We aspire to build an environment where new perspectives are encouraged, where resilience, fresh ideas and different opinions are valued.

About the Opportunity

TMHCC International has recently completed an exciting IT transformation and is the process of recruiting a broad range of suitably qualified, skilled and experienced people. Reporting into the Business Information Security Officer (BISO) for TMHCC International, the Threat and Vulnerability Lead is part of the BISO function established within in the CIO organisation of the International division. You'll join the IT team as someone who is passionate about Cyber Threat Intelligence, Cyber Risk, and Vulnerability Management.

Under the guidance of the BISO, you will work closely with TMHCC International IT teams and Enterprise Security team to prioritise and coordinate vulnerability remediation across the platform estate. You will be experienced in cyber vulnerability detection, remediation, and reporting processes. You will be responsible for triaging and prioritising detected vulnerabilities as well as coordinating and driving remediation activity to reduce our cyber risk profile.

Key to your role will be maturing MI reporting for onward communication to the board and executive.

Core Responsibilities

• Ensure in-depth knowledge and understanding of Threat and Vulnerability management practices as you prioritise and coordinate remediation of vulnerabilities across our estate.
• Establish and maintain strong relationships with stakeholders in the International IT teams as well as Enterprise Security.
• Track vulnerability scanning coverage and remediation risk and performance metrics against established thresholds.
• Collaborate with Enterprise Security teams, as you monitor and understand impacting risks of existing, and emerging, vulnerabilities.
• Coordinate with the IT stakeholders and Enterprise Security to ensure all infrastructure vulnerability scanning solutions are deployed and operating across the IT organisation.
• Oversight and review firewall security rule compliance and drive remediation and risk reduction.
• Ensure exceptions to vulnerability management policies are managed in accordance with Enterprise security policy exception processes.
• Critically evaluate information gathered from multiple sources, reconcile conflicts, abstract up from low-level information to create a clear understanding of cyber risks.
• Support the BISO in the providing metrics to the Divisional IT Risk Reporting and Dashboards.
• Escalate significant cyber risks and issues as they emerge, to the BISO and IT Leadership for action or information.
• Lead threat intelligence led scenario testing initiatives including remediation of identified issues to meet operational resiliency requirements.

Skills and Requirements:

Essential:

• 5-10 years of experience in a technical cyber role (e.g., threat and vulnerability analyst, security engineer, SOC analyst).
• Working knowledge of vulnerability scanning and detection technologies.
• Practical experience in triage and remediation of vulnerabilities.
• Deep understanding of and ability to articulate the risk associated with security vulnerabilities.
• Ability to coordinate and chair regular meetings and workshops with multiple stakeholders to provide guidance, collaboration and oversight of vulnerability remediation initiatives.
• Excellent understanding of MITRE ATT&CK framework, adversary tactics and techniques.
• Working knowledge of red team and penetration testing practices and experience in remediation of test findings.
• Excellent verbal, written communication, and presentation skills, being able to explain complex items in a simple yet articulate manner.
• Confidence in presenting information and acting as a source of SME knowledge and guidance.
• Analytical, conceptual thinking, planning and execution skills.
• Ability to drive improvements and take charge of initiatives, backed with excellent coordination strength as well as assertiveness.
• Result orientated and able to manage to measurable targets and desired outcomes.
• A passion to champion a cyber security culture and continuous learning of latest cyber threat trends.
• Relevant industry qualifications (e.g. CISSP).

Desirable:

• Practical experience of Qualys scanning technologies.
• Experience of the Specialty and Lloyd’s/Companies market insurance industry
• Relevant degree or similar qualification (e.g., BSc Computer Science or other related fields of study)