About The Role
Team Vitality Technology
Working Pattern - Hybrid 2 days per week in the Vitality Bournemouth Office.Full time, 35 hours per week.
We are happy to discuss flexible working!
Top 3 skills needed for this role: Experience driving governance, risk, and control delivery
Proven track record leading cross-functional security initiatives
Confident in owning audit, reporting, and assurance outcomes
What this role is all about:
At Vitality, were looking for an IAM & GRC Lead to take ownership of delivering our security governance, identity and access management, and assurance activities. This is a hands-on role where youll work closely with teams across the business to keep key security, audit, and regulatory priorities on track and delivered to a high standard. Youll help ensure controls are in place, reporting is clear and useful, and our approach to security remains consistent and effectiveplaying a key role in strengthening governance, supporting audits, and driving delivery across both our UK and Vietnam operations.
Key Actions Own and deliver security governance and control activities, including ITGC execution, audit readiness, evidence tracking, and support for GIA governance audits
Maintain and update the ISO27001 ISMS (including policy and standards refresh), and deliver operational resilience and BCP artefacts aligned to regulatory expectations
Drive control and assurance activities, including Segregation of Duties (SoD) remediation and third-party assurance questionnaires (SIG Lite and broader SIG), proactively identifying and mitigating risks
Support cloud and platform security onboarding (GCP VMSP), alongside IAM/IDAM onboarding, role management, reporting discipline, and data classification and labelling aligned to global standards
Coordinate security tooling and testing, including penetration testing and Wiz deployment, embedding solutions into BAU processes
Establish and maintain clear, decision-useful security reporting and governance, including monthly reporting (1st and 2nd line), Security KRIs, and TechComm reporting across the UK and Vietnam
Build strong stakeholder relationships across technical and business teams, ensuring clear communication, alignment, and delivery of security priorities in a fast-paced, evolving environment
Work independently to prioritise, make decisions, and drive activities through to completion, aligning security initiatives with wider business objectives and delivering practical value
What do you need to thrive? Significant experience operating in a senior-level security, IAM, or GRC role
Strong knowledge of IAM/IDAM processes, including role management and access controls
Experience working with governance, controls, and audit frameworks (e.g. ISO27001, ITGCs)
Experience with third-party risk and security questionnaires (e.g. SIG)
Exposure to cloud environments (ideally GCP) and platform onboarding
Experience producing clear, executive-level reporting, including KRIs
Proven ability to coordinate delivery across multiple teams and stakeholders
Experience supporting audit processes (internal, external, and GIA)
Ability to manage competing priorities and deliver to tight timelines with a hands-on, delivery-focused approach
Strong collaboration skills, with the ability to bring stakeholders on the journey
So, whats in it for you? Bonus Schemes A bonus that regularly rewards you for your performance
A pension of up to 12% We will match your contributions up to 6% of your salary
Our award-winning Vitality health insurance With its own set of rewards and benefits
Life Assurance Four times annual salary
These are just some of the many perks that we offer! To view the extensive range of benefits we offer, please visit our careers page. Fantastic Benefits. Exciting rewards. Great career opportunities!
If you are successfulin your application and join us at Vitality, this is our promise to you, w e will: Help you to be the healthiest youve ever been
Create an environment that embraces you as you are and enables you to be your best self
Give you flexibility on how, where and when you work
Help you advance your career by playing you to your strengths
Give you a voice to help our business grow and make Vitality a great place to be
Give you the space to try, fail and learn
Provide a healthy balance of challenge and support
Recognise and reward you with a competitive salary and amazing benefits
Be there for you when you need us
Provide opportunities for you to be a force for good in society
We commit to all these things because we want you to feel that you belong, and are supported to be happy and healthy.
About The Company
Were incredibly proud to be recognised for the culture we've created recently being named one of Glassdoors Best Places to Work 2026, and in 2024 we were delighted to be awarded Top 10 Places to Work in the Sunday Times Awards.
Vitality is a multi-award-winning UK insurance brand, here to make the world a healthier, happier place.
Weve been a purpose and values-driven business from day 1- long before it became fashionable. Our core purpose is to make people healthier and enhance protect their lives. Vitality pioneered shared-value insurance. We incentivise people to live healthier longer lives they benefit, our business benefits, and society benefits. Were successful because we attract, develop, and retain the best people and because we care.
Plus, you get to join our 1.7+ million members with access to our unique health insurance and healthy living programme. Just to make sure you know our products inside and out.
Ready to find out if were the right fit for you? We cant wait.
If we are fortunate in receiving a high volume of quality applications we may need to close this vacancy early. If you are interested, please submit your application as soon as possible.
TPBN1_UKTJ