Cyber Defence Assurance Specialist (Security Audit)

Overview:

We are seeking passionate people to support the Cyber Security Defence teams within WTW and provide an excellent service and trusted expertise to wider parts of our business. As part of the Cyber Defence Assurance Team, you will support the Cyber Security Defence teams with all Assurance and Audit requests, ensuring WTW continue to meet our regulatory, internal and client audit requirements. You will need to have excellent communicative skills with the ability to liaise with technical and non-technical audiences, and a solid audit acumen to deal with multiple types of stakeholders across the business. This role would suit those with a history of delivering or supporting formal financial services audits, from SOC2, DORA and FCA or ISO audits such as ISO:27001 for global organisations. The role would suit a candidate familiar with working in a high-pressure environment due to timeline demands and requires experience working with teams that are geographically dispersed and across different time-zones.

Key Responsibilities:

• Support the collation of evidence to support client audits of WTW, ensuring the client assurance team have the correct information and are fully supported throughout the process. 
• Support the collation of evidence to support regulatory audits of WTW, ensuring the regulatory audit team have the right information and are fully supported throughout the process. 
• Support the collation of evidence to support internal audits of WTW, ensuring the internal audit team have the right information and are fully supported throughout the process. 
• Continuous review and maintenance of central knowledge base for Cyber Defence, ensuring the client assurance team always have access to the latest supporting information. 
• Collaborate closely with all Cyber Defence teams to ensure processes and policies are in place to meet internal audit requirements and assist in identifying areas requiring improvement 
• Proactively support and track Management Action Plans for Cyber Defence teams, ensuring responses are provided within specific time limits and stated outcomes are met.
• Proactively support and track outstanding actions identified through audits, team meetings, lessons learned, quality assurance and continual improvement to ensure they are actioned and moved to completion within an agreed timeframe 
• Support audit checks for joiners, movers and leavers, ensuring thorough documentation and account closure 
• On-Going Documentation Implementation & Lifecycle Review for all Cyber Defence teams focusing on the Threat Intelligence teams
• Supporting all members of the Cyber Defence Assurance team during heavy workload periods 
• Attending regular Cyber Defence Meetings ensuring supporting documentation is prepared and available for discussion

Qualifications:

• Experience in cyber security auditing from a client and regulator perspective 
• Understanding of the function of a Security Cyber Defence Teams 
• Familiarity with Information Security standards, regulations, and frameworks (NIST, ISO27001). 
• Strong communication skills, able to engage with technical and non-technical audiences. 
• Effective organisational skills, detail-oriented, with a track record in Quality Assurance. 
• Experience in undergoing audits, inspections, and evidence collection. 
• Experience in Microsoft Powerpoint, Excel and Visio
• Team player with excellent communication and coordination skills. 
• Innovative problem-solver, people-focused, with a professional demeanour. 
• Ability to cultivate a positive, security-aware culture within a fast-paced environment.

WTW is an Equal Opportunity Employer