AT AYVENS, PROGRESS STARTS WITH YOU.

Our ambitions to shape the future of sustainable mobility are powered by our talent. Join us, and get better with every move.
Base Location: Leopardstown, Dublin
Contract Type: Permanent, Full-time
Seniority Level : Experienced
Reporting To: Digital & IT Director, Ayvens Ireland Chief Information Officer, Ayvens Insurance

WHAT QUALIFICATIONS OR BACKGROUND WOULD BE USEFUL?

✓ A bachelor’s degree in IT, Information Security, or a related field would be ideal.
✓ Certifications in relevant IT security frameworks, such as ISO 27001, CISM, or CompTIA Security+, are desirable.

WHERE DOES THIS ROLE FIT IN?

The Information Security Officer plays a critical role as part of Ayvens’ first line of defense (LOD1). As a key player in Ayvens’ cybersecurity strategy, the successful applicant will help drive security best practices and create a culture of compliance, playing an integral role in protecting our customers, our employees, and our brand. The successful applicant will ensure Ayvens Ireland and Ayvens Insurance demonstrably adhere to cybersecurity policies, information security standards, regulatory requirements, and internal rules. The role is split 50/50 between the two business units with dual reporting lines, offering a unique opportunity to influence and lead security across two closely aligned organisations.

WHAT WILL YOU BE DOING?

IT Risk Management

• Identify, assess, and document IT risks across applications, infrastructure, and business processes for both business units.
• Maintain comprehensive risk registers and track mitigation actions.
• Conduct risk assessments and provide actionable treatment plans.
• Implement, monitor, and maintain Level 1 permanent controls in line with global security standards.
• Act as a key escalation point for non-compliance, leading remediation and continuous improvement efforts.

Policy & Standards Alignment

• Ensure compliance with global IT security policies and local regulatory frameworks (ISO 27001, GDPR, NIST, etc).
• Serve as the primary point of contact for the enforcement of group security frameworks within both business units, ensuring local implementations align with global objectives.

Security Operations & Incident Support

• Lead IT security incident response, escalation, and resolution for both business units.
• Support user access governance, manage privileged accounts and conduct identity reviews, strengthening the overall security posture of the organisation.
• Design and deliver security awareness training to enhance organisational security culture.

Reporting & Documentation

• Develop and maintain comprehensive dashboards and security reports for both business units, ensuring key stakeholders are kept informed of the IT risk landscape.
• Provide clear, regular updates on IT risk status and control effectiveness to both line managers and senior leadership.