Job Title: Assistant Cyber Services Manager (INT)
Division: Cyber Risks
Location: Barcelona, Paris, Munich, Hamburg, London
Reports To: As per Beazley's organisation chart
Key Relationships: Externally: Beazley customers and prospects, counsel & vendors, brokers. Internally: Underwriters, claims managers, compliance.
Job Summary: Manage and coordinate the investigation of cyber security incidents covered by Beazley insurance policies. Consult, advise, and engage our policyholders regarding information security and risk management best practices. Ensure that policyholders use the risk management resources they are entitled to receive under their policies. Key requirement of the role is assistance in achieving high levels of satisfaction for clients and brokers through excellent client service, to maximize retention. Other duties include managing external service providers, ensuring customer satisfaction with the incident response process, and working with Beazley business units to improve product and service offerings.
Key Responsibilities:Risk Management: Deliver cyber risk management services to Beazley customers. Work with external vendors who provide the same in certain territories.Incident Response: Manage cyber incidents involving Beazley insureds, including liaison with internal stakeholders and managing third-party experts.Vendor Management: Manage third-party expert panels and outsourced BBR managers in terms of suitability, pricing models and service levels. Assist with the management of service provider contracts, including selection of vendors, contract negotiation, onboarding, and performance management.Claims Management: Work with Beazley Claims team to ensure that services are consistent with insurance policy obligations.Client Satisfaction: Ensure high quality service delivery and customer satisfaction.Marketing Support: Assist with marketing efforts, including speaking at conferences, client meetings and marketing campaigns and initiatives.Expert Resource: Maintain high level of expertise in matters related to privacy breaches and cyber security incidents and be a resource to business units on relevant privacy legal issues. Follow and understand existing and emerging tools and product trends in the information security market.General:At Beazley we are committed to doing the right thing because it is the right thing to do. It is important that within all your interactions both internally and externally you adhere to this principle through adoption of Beazley's core values and behaviours - PIED and Being Beazley.
- Adopt the Beazley culture of Professionalism, Integrity, Effectiveness and Dynamic (PIED) that contributes to an internal environment of teamwork and promote a positive brand image and experience to our external customers.
- Comply with Beazley procedures, policies and regulations including the code of conduct. Undertake training on Beazley policies and procedures as delivered by your line manager, the Talent Management development or assurance teams (compliance, risk, internal audit) either directly, via e-learning or the learning management system.
- Display business ethics that uphold the interests of all our customers. Ensure all interactions with customers are focused on delivering a fair outcome, including having the right products for their needs.
- Comply with any specific responsibilities necessary for your role as outlined by your line manager, the Talent Management or assurance teams (compliance, risk, internal audit) and ensure you keep up to date with developments in these areas. This may include, amongst others, Beazley's underwriting control standards, Beazley's claims control standards, other Beazley standards and customer relationship management.
- Carry out additional responsibilities as individually notified, either through your objectives or through the learning management system. These may include membership of any Beazley committees or working groups.
Personal Profile:Education and Qualifications:Degree in a technical discipline, ideally with an information security element.Fluency in spoken and written English, plus one of the following: French, German, Italian, or Spanish, respectively (C2 level according to the CEFR definition) (preference being Spanish).Relevant professional experience is desirable, e.g., in incident response management, Red/Blue Teaming, network & system administration, ISMS auditing, or similar.One of the following is desirable:Certified Information Security Manager (CISM)Certified ISO 27001 Auditor or Security OfficerGIAC Certified Forensic Analyst (GCFA) or Examiner (GCFE)GIAC Reverse Engineering Malware (GREM)GIAC Network Forensic Analyst (GNFA)Other related cyber security or information technology industry certificationSkills and Abilities:Excellent communicator, both verbal and written.
#J-18808-Ljbffr