cover image
Direct Line Group

Direct Line Group

www.directlinegroupcareers.com

2 Jobs

6,351 Employees

About the Company

Our mission is to be brilliant for customers every day. With powerful and trusted brands, we offer a range of products, across various channels, providing services to our customers whenever and wherever they need us. 

We’ve been helping people carry on with their lives since the 80s, giving them the peace of mind they need to focus on the future.
After 40 years of innovation, we’re still leading the way today.
Our business is full of brilliant individuals working together to reimagine insurance.
Together, we’re one of a kind.

Our brands
We’re home to variety and expertise on a huge scale.
Strong values, distinctive qualities, and great people. That’s the secret to building some of the nation’s best-known brands.

Direct Line
Churchill
Privilege
Green Flag
Darwin
DLG Legal Services
DLG Auto Services
DLG Partnerships


Listed Jobs

Company background Company brand
Company Name
Direct Line Group
Job Title
Security Engineer
Job Description
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance, and procurement, we’re a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day.

Our CISO function is created by Cyber Defence Centre, Business Resilience, Privacy & Information Management, Strategy & Operating Office and Security Design, Innovation & Enablement.

What We Look For

We are looking for a Security Engineer who will provide security-related technical and functional support for DLG security tooling and services, overseeing the delivery of security services to a high standard, and maintaining the health and effectiveness of controls to ensure we are adequately protected against existing and horizon threats identified by our Threat Intelligence and Operational Security teams.

Who You Will Work With

As a Security Engineer you will become a member of the Security Engineering team within the Cyber Defence Centre, and you will report to the Security Engineering Manager.

This is a 12-month Fixed Term Contract opportunity. This is a hybrid role with two working days a week from our London or Bristol office.

What You Will Do

Maintain the overall security integrity of DLG’s environment.
Improve secure, continuous integration pipelines whilst working closely with our developers to advise on standard methodology.
Support projects and change programmes ensuring that they align with the security architecture framework and that solutions meet relevant information security fundamentals.
Maintain a technical assurance approach that provides confidence to colleagues whilst ensuring that the value of proposed changes will be achieved.
Take responsibility and act as a technical SME for securing DLG’s environments in line with compliance commitments.
Ensure security technical platforms are configured to optimise the overall security offered to DLG.
Improve Security Information and Event Management (SIEM) coverage of DLG’s overall environment.
Make sure that all changes to the production environment have been reviewed and approved.
Communicate and build relationships at various levels with an ability to discuss deep technical concepts with counterparts from our suppliers but also communicate at a higher level with project managers and programme leads to convey the processes and timings of programme and project delivery.
Develop technical security standards and ensure all changes are in line with the network security architecture.

What You Will Need

If you have Computer Science, Engineering, information security or STEM experience we would like to hear from you.

Network Infrastructure: In-depth knowledge of routing, TCP/IP, Internet protocols, and network security management.
Security Technologies: Expertise in Web Application & Network Firewalls, IDS/IPS, File Integrity Monitoring, SIEM, Advanced Endpoint Protection.
Security Management: Advanced skills in vulnerability management, event management, application security, incident response, forensics, and encryption.
Technical Proficiency: Strong foundation in algorithms, data structures, databases, networks, and tool development.

Desirable Skills

Proficiency with Microsoft security tooling.
Familiarity with Cyber Defence areas, including threat intelligence, detect and response, and engineering.
Understanding of risk assessment in technical decision-making.
Experience in financial environments.

Qualifications

Essential certifications: CISM, CISSP, M.Inst.ISP, or CISA.
Preferred certifications: GCIH or ECIH by recognized professional bodies.

What we’ll give you in return:

We wouldn’t be where we are today without our people and the wide variety of perspectives and life experiences they bring. That’s why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role.

Core benefits include:

9% employer contributed pension
50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover
Up to 10% annual bonus
25 days holiday (rising by 1 each year to 28) + bank holidays and option to buy or sell up to 5 days
Additional optional Health and Dental insurance
EV car scheme allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way.
Buy as you earn share scheme
Employee discounts and cashback

Plus many more

Ways of Working

Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here .

We recognise and embrace people that work in different ways so if you need any reasonable adjustments within this recruitment process, please reach out to us and we can discuss how we can support you with this.

There’s no-one else like you.

No-one with the exact same mix of strengths, quirks, skills and thoughts. That’s why you could belong here. As part of a team of brilliant individuals, in a place that empowers you to be the best you can be. We’re proud of who we are, of what we do, and what every single one of us brings.

Join us.

Help us keep innovating and putting customers at the heart of everything. To be an insurance company of the future. When we work together, we can all achieve great things. Inspiring, challenging, and supporting each other to aim higher.

Together we’re one of a kind.

Collectively we help every business within our group aim higher. Standing shoulder to-shoulder to stand out in the market, we want to be an insurance company of the future. And with so many areas to choose from, your ambitions are welcome here. See your opportunity to start a career that’s varied, distinct and exciting.

Visit directlinegroupcareers.com
London, United Kingdom
Hybrid
02-04-2025
Company background Company brand
Company Name
Direct Line Group
Job Title
Risk Analyst –Technology & Cyber
Job Description
Risk Analyst – Technology & Cyber

London, Glasgow, Leeds, Birmingham – Hybrid working (2 days per week in the office)

Let’s make the most of your talent

At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we’re a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day.

From Upstream Risk, Regulatory Advice and Compliance Management Information to Privacy and Data Protection, our Risk and Compliance teams keep us one step ahead, always. With links to every part of the business, and the responsibility for keeping people safe and compliant with all regulatory, claims, and underwriting controls, we’ve got opportunities to develop your skills no matter your specialisation.

What You’ll Do

We are seeking a Technology & Cyber Risk Analyst to join our Second Line of Defence (2LOD) team. This role will support the oversight, challenge, and assurance of the technology and cybersecurity risks across the organisation, ensuring effective risk management practices in line with regulatory expectations and best practices.

You will support Risk oversight and challenge of Group and business area risk profiles, through:

Utilisation of the Group risk management system, Workiva, to provide thorough analysis of risk actions, events, controls, metrics and management information for review by the Head of Area.
Work with the business to ensure the completeness and accuracy of risk information contained within Workiva, including its compliance with the Enterprise Risk Strategy & Framework (ERMF) and Risk Management Process Minimum Standard(s).
Maintain and drive forward continuous improvements to key 2LoD risk documentation to support decision making including the Aggregated Risk Profile and 2LoD Opinion process.
Review and challenge controls and actions to ensure appropriateness to address any gaps identified.
Conduct thematic and deep-dive reviews across the risk universe (as required) to provide assurance that Group-level risks are appropriately articulated and rated, with appropriate addressing actions (where necessary).
Regular engagement with wider Risk teams to understand any compliance, regulatory or financial themes affecting business area risk profiles.
Provide active support in the management and oversight of DLG’s Risk Appetite.
Production of monthly reporting on Risk areas to the Operational Risk Committee (ORC), including provision of an aggregated view of Risk Profile as well as any notable Events and Actions for discussion and review (with support of the broader Risk team).
Assist in the review, challenge and finalisation of papers for presentation at various committee and governance forums.
Work collaboratively with the Risk Framework team to facilitate activities (where required) and provide insight to central Enterprise Risk Management processes such as the Risk &Control Self-assessment Process, and Emerging Risk process.
Promote a strong risk and control culture and general awareness of risk management within DLG.

What We Are Looking For

Experience in technology risk, cybersecurity, IT audit or risk management - preferably within financial services or regulated industries.
Understanding of technology and cyber frameworks (e.g., COBIT, NIST, ISO 27001, ITIL).
Ability to interpret complex technical risk issues and present them clearly to stakeholders.
Strong numeracy, analytical and research skills.
Strong planning and organisational skills.
Awareness of the balance between risk, control and growth.
Self-motivated, able to generate new ideas, and solve problems.
Strong Stakeholder Engagement skills.
Experience of conducting thematic risk assurance assessments.
Experience of GRC systems would be beneficial.

What we’ll give you in return:

We wouldn’t be where we are today without our people and the wide variety of perspectives and life experiences they bring. That’s why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role. Core benefits include:

9% employer contributed pension
50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover
Up to 10% annual bonus
25 days holiday (rising by 1 each year to 28) + bank holidays and option to buy or sell up to 5 days
Additional optional Health and Dental insurance
EV car scheme allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way.
Buy as you earn share scheme
Employee discounts and cashback

Ways of Working

Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here

There’s no-one else like you. No-one with the exact same mix of strengths, quirks, skills and thoughts. That’s why you could belong here. As part of a team of brilliant individuals, in a place that empowers you to be the best you can be. We’re proud of who we are, of what we do, and what every single one of us brings. Join us. Help us keep innovating and putting customers at the heart of everything. To be an insurance company of the future. When we work together, we can all achieve great things. Inspiring, challenging, and supporting each other to aim higher.

Together we’re one of a kind.
Birmingham, United Kingdom
Hybrid
02-04-2025