Our purpose is to give everyone real confidence to put their money to work. With a heritage dating back more than 175 years, we have a long history of innovation in savings and investments, combining asset management and insurance expertise to offer a wide range of solutions.

Our two distinct operating segments, Asset Management and Life, work together to provide access to balanced, long-term investment and savings solutions.

Through telling it like it is, owning it now, and moving it forward together with care and integrity; we are creating an exceptional place to work for exceptional talent.

We will consider flexible working arrangements for any of our roles and also offer work place accommodations to ensure you have what you need to effectively deliver in your role.

The Enterprise Security Governance & Controls Consultant will be responsible for ensuring the effective delivery, maintenance and continual improvement of security controls, testing, issues management, and reporting within M&G’s Enterprise Security team.

The Role:

The Enterprise Security Governance & Controls Consultant will be responsible for ensuring the effective delivery, maintenance and continual improvement of security controls, testing, issues management, and reporting within M&G’s Enterprise Security team.

This is a new role that will work across two existing control teams in Enterprise Security, with a specific focus on IDAM controls, coordinating control maturity within the wider Security team, and providing a programme of work wider across technology and the business to drive compliance with security controls and requirements. Working to promote good GRC disciplines; alignment with the corporate risk models; standardisation of processes, controls and reporting approaches; and supporting improvement of the organisation’s overall security control maturity.

You will bring a knowledge of security, risk management, and controls, be organised but flexible in approach, and able to work well within teams and balance demands of stakeholders.

Key Responsibilities for this Role:

• Design, creation and maintenance of security process and control documentation aligned to the ISF Standard of Good Practice (SoGP)

• Using knowledge of security control design and operational effectiveness to support audits and control testing, providing evidence where required
• Provide guidance and support to control operators and application teams to ensure security risks are well understood and effectively addressed. Enable business teams to improve and evidence their compliance with security requirements through education and strong governance.
• Prepare and deliver reports and dashboards on security metrics, control performance and risk posture to senior management

Key Knowledge, Skills & Experience:

• Good knowledge of ISF SoGP control domains and governance practices (or equivalent)
• Familiarity of security frameworks (eg NIST, ISO 27005)

• Three line of defence oversight model
• Understanding of GRC principles and practices, including risk management, RCSAs, security/technology control, policy and standards hierarchy, regulatory compliance, governance and reporting
• Understanding of identity related controls (JML, access reviews, privileged access)

What we offer:

At M&G, we’re committed to helping you thrive and supporting your wellbeing, both at work and beyond. Our benefits are designed to help you balance your professional and personal life, while planning confidently for your future. Our UK benefits include:

• As a savings and Investments firm we are proud to offer a valuable pension scheme of 18%, with 13% made up of Employer Contributions and 5% Employee Contributions. We also offer Share Save and our Share Incentive Plan, together with access to financial wellbeing and support services - to help give you real confidence to put your money to work.

• Enjoy 38 days annual leave including bank holidays, with the opportunity to purchase up to 5 extra days and additional flexibility through our Time Off When You Need It policy – to balance your work and personal commitments.

• Our market leading Inspiring Families policy includes comprehensive support and paid parental leave covering maternity, adoption, surrogacy, and paternity leave - as supporting families is a core aspect of our inclusive culture.

• Health & Protection cover including Private Healthcare, Critical Illness cover and Life Assurance for you, with family options - for peace of mind.

To explore more about life at M&G and our full benefits offering, visit Life at M&G

We have a diverse workforce and an inclusive culture at M&G, underpinned by our policies and our employee-led networks who provide networking opportunities, advice and support for the diverse communities our colleagues represent. Regardless of gender, ethnicity, age, sexual orientation, nationality, disability or long term condition, we are looking to attract, promote and retain exceptional people. We also welcome those who take part in military service and those returning from career breaks.

M&G is also proud to be a Disability Confident Leader, and we welcome applications from candidates with long-term health conditions, disabilities, or neuro-divergent conditions.

If you need assistance or an alternative means of applying for a role due to a disability or additional need, please let us know by contacting us at: careers@mandg.com