Business Security Director, Apac

Posting Description:

- We’re hiring_

Aon is currently recruiting a Business Security Director, APAC to join our team in Singapore.

**About Aon**

Aon Plc is a leading global professional services firm providing a broad range of risk, retirement and health solutions. Our 50,000 colleagues in 120 countries empower results for clients by using proprietary data and analytics to deliver insights that reduce volatility and improve performance.

At Aon, you’ll be part of a team which will support and inspire you and provide the opportunities and resources to develop your skills. It’s an environment which encourages you to achieve your best - together we’ll empower results.

**The Opportunity**

Reporting to the Business Security Officer (BSO) for APAC, this role is key in managing the regional and solution line operational security risk level to within acceptable levels via leading remediation programs and deployment of Global Security Services (GSS) controls. The role requires a broad understanding of security controls, their effective implementation within corporate environments coupled with good relationship management skiils to enable business adoption.

As a Director within the BSO service, you will be accountable for BSO service delivery to a large country with multiple solution lines or to a regional group of smaller businesses. The role with need to have effective relationships with senior leadership to support the delivery of the regional business goals and operate an effective security risk management regime against an agreed security risk mitigation strategy. As the trusted security lead, the role will present to local leaders, regulators and clients as needed.

This is a highly visible role within Aon to be able to embed effective security controls at scale within the firm. We are looking for you to bring new ideas and a commitment toward continual learning. You will stay actively engaged with business leaders, IT executives and external clients. The role requires gravitas and an ability to be influential and persuasive.

Aon deeply values inclusiveness, collaboration and a "better together" mindset to deliver distinctive value to colleagues and clients. Overall, this role is an opportunity to deliver high impacts and make your mark

**Responsibilities**:
The BSO service provides a Solution Line/Business Level (BU) security connection to the core GSS to ensure they are appropriately leveraged to mitigate BU security risks and provides the following security services at a sub-region/Solution line level:

- **
Security Risk Management**:

- Managing a Security Risk committee to manage Security Risks.
- Track remediation of Security Audit and Compliance findings.
- Review Security Metrics and lead remediation programs.
- Lead or Sponsor Security initiatives within area of accountability
- In conjunction with Data Privacy ensure necessary security controls are in place.
- **
Security Leadership**:

- Provide Security reporting to leadership committees and Boards.
- Represent Security to appropriate Regulatory bodies.
- Own the Security strategy for the assigned area and manage its delivery via leverage of GSS services.
- Own the colleague security culture programme.
- Represent the BU in the Security Incident Response process.
- Align Security services with the BU growth strategy.
- Remediation Management (IA Findings).
- Security Compliance and Conduct management.
- **
Client Support/Escalation Management**:

- Represent Security on Client calls or escalations.
- Provide first line security advice, guidance and Policy and Standard support to Client teams.
- Support the engagement of GSS services via the correct process.
- **
GSS Service Delivery Management**:

- Manage GSS Service delivery escalations.
- Support GSS project implementation within the assigned area of accountability.
- Contribute to the ‘voice of the Business’ in development of GSS service enhancements.
- Security Intake & Relationship Mangement
- Regulatory & Compliance Assessment Support.
- Continuity and Disaster Recovery Support.
- Data Governance Support.

**Requirements**:

- **
Core Skills**:

- Strong Information Security knowledge and experience of implementing and operating an effective control regime in a large corporate environment.
- Knowledge of Physical and Personnel security principals and best practice.
- Experience if Compliance assurance and Audit practice is desirable.
- Security certification (CISSP,CISM) an advantage
- Broad experience of Information Security domains and operation in a large corporate environment.
- Understanding and experience of delivering Sarbanes Oxley (404) compliance.
- **
Experience**:

- Proven 6+ years of experience of:

- Delivering change via influence and building effective relationships with business leadership.
- Communicating and influence of senior leaders via both written and verbal means.
- Strong personal drive and resilence to deliver results.
- Strong networking sk