• Profile
Job Description
Ensure the bank remains compliant with regulatorstandards and industry expectations for Information and Cyber Security.
 

Key Responsibilities

 

  • To develop and maintain the information security policies and accompanying standards, procedures and guidance to meet regulatory requirements, industry expectations and alignment to ISO 27001.

  • Provide secure by design requirements for the inclusions into technology standards and project deliverables.

  • Perform business impact risk assessments of services and locations to ensure risks and control requirements are understood and managed within risk appetite.

  • Assess new and existing suppliers to ensure third party risks and control requirements are understood and managed within risk appetite.

  • To develop and deliver a programme of planned compliance reviews and ensure any improvements are identified, reported and addressed.

  • To promote security awareness by developing and implementing a security awareness and training programme.

  • To oversee and manage the delivery of security testing and assurance activities including penetration testing and vulnerability scanning.

  • To investigate suspected and actual security incidents in accordance with the Cyber Incident Response Plan.

  • To provide operational reporting of Information and Cyber Security key performance and risk indicators.

 

Key Interfaces

  • IT Team

  • Key stakeholders and Senior Management

  • All business areas across the Group

  • 3rd party suppliers

Person Specification

Knowledge & Experience

 

•    Broad knowledge of Information and Cyber Security

•    Financial Services background desirable

•    Working with PCI DSS and ISO 27001 standards

•    Analytical and problem solving skills

•   Highly computer literate; with strong Business Analysis skills

 

Communication Skills

 

  • Excellent communication skills both written and verbal with colleagues, providers and senior management.

Core Competencies

 

  • Problem Solving & Judgment

  • Customer Focus

  • Planning & Reviewing

  • Performance Focus

  • Expert Knowledge

  • Communication & Confidence