AON IS IN THE BUSINESS OF BETTER DECISIONS.

At Aon, we shape decisions for the better to protect and enrich the lives of people around the world.
As an organization, we are united through trust as one inclusive, diverse team, and we are passionate about helping our colleagues and clients succeed.

REQUIRED QUALIFICATIONS AND SKILLS:

• 10+ years of experience in cybersecurity or technology adjacent roles
• 5+ years in a cybersecurity or technology adjacent leadership position
• Proven experience leading and managing global cybersecurity teams in a complex, organizational environment
• Strong knowledge of data protection regulations (e.g., GDPR, CCPA) and industry standards (e.g., ISO 27001).
• Persuasive communication skills, with the ability to effectively communicate technical information to non-technical stakeholders and the ability to maintain focus during high stress situations.

PREFERRED QUALIFICATIONS:

• Experience in the Financial Services Industry or other highly regulated industry
• Relevant cybersecurity certifications such as CISSP or CISM

AON IS NOT ACCEPTING UNSOLICITED RESUMES FROM SEARCH FIRMS FOR THIS POSITION. IF YOU ARE A SEARCH FIRM, YOU WILL NOT BE COMPENSATED IN ANY WAY FOR YOUR SUBMISSION OF A CANDIDATE, EVEN IF AON HIRES THAT CANDIDATE.

Nothing in this job description restricts management’s right to assign or reassign duties and responsibilities to this job at any time.

A SUMMARY OF ALL THE BENEFITS OFFERED FOR THIS POSITION:

Aon offers a comprehensive package of benefits for full-time and regular part-time colleagues, including, but not limited to: a 401(k) savings plan with employer contributions; an employee stock purchase plan; consideration for long-term incentive awards at Aon’s discretion; medical, dental and vision insurance. This role does not accrue vacation. Rather, this role is eligible to take paid time off at the discretion of the employee and management in accordance with company policy and practices. Various other types of leaves of absence; paid sick leave as provided under state and local paid sick leave laws, short-term disability and optional long-term disability, health savings account, health care and dependent care reimbursement accounts, employee and dependent life insurance and supplemental life and AD&D insurance; optional personal insurance policies, adoption assistance, tuition assistance, commuter benefits, and an employee assistance program that includes free counseling sessions. Eligibility for benefits is governed by the applicable plan documents and policies.

LI-KH1

2025-9132

KEY RESPONSIBILITIES:

• Strategic Leadership: Develop and implement a comprehensive data defense strategy aligned with the organization’s cybersecurity objectives, focusing on unstructured data vulnerabilities.
• Execution: Build a roadmap related to data discovery, access control, lifecycle management, and archiving, partnering with peers and stakeholders to execute.
• Risk Management: Identify, assess, and prioritize data security risks, particularly those related to unstructured data, and develop mitigation strategies to reduce regulatory, compliance, and security risks.
• Design: Implement solutions to address inefficiencies in managing data across platforms like SharePoint, File Repositories, and other locations where unstructured data exists.
• Technology and Innovation: Partnering with Data Security Engineering, IAM and Product & Technology teams to implement advanced data security technologies and solutions.
• Security Education: Develop and deliver training programs to enhance data security awareness across the organization and promote a culture of data protection and privacy.
• Data Destruction: Oversee Records Record to maintain and enforce policies for secure data destruction to prevent unauthorized access to obsolete data.