Global Defense – Cybersecurity Engineering and Operations is comprised of several inter-joined teams: Technical Directors Office (TDO), Site Reliability Engineering (SRE), Cybersecurity & Technology Engineering (CTE) Global Cybersecurity Operations (GCO) and Cybersecurity Intelligence & Threat Analysis (CITA). Together, the function enables an adaptive and constantly evolving capacity to address risks borne through an ever-shifting threat landscape.
Technology teams in the UK work closely with our global businesses to help design and build digital services that allow our millions of customers around the world, to bank quickly, simply and securely. They also run and manage our IT infrastructure, data centres and core banking systems that power the world’s leading international bank.
responsibilities :
Providing the first line of defense (1LOD) for the organisation for all matters relating to Network Security controls. Drive implementation of controls to protect the groups key data.
Risk Management: Driving the accuracy and alignment of the NSEC control to the banks Risk Control framework.
Controls Governance: Providing strategic direction on Control Design and Continuous Control Monitoring - MPs/OIs enhancements, Control effectiveness rationale. Managing, reporting, and improving performance metrics (KCIs).
Compliance: Ensure Network Security controls align with relevant regulations, standards, and industry best practices, and support compliance efforts. Oversee, implement and drive internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators.
Stakeholder Management: 2LoD/3LoD engagement – Lead responses on informal control queries and formal review and challenges and observations. Collaborate with senior stakeholders to facilitate understanding and alignment of NSEC control objectives, including business units, audit and regulators. Providing specialist knowledge and timely feedback, working in partnership with those stakeholders.
Cross Controls Collaboration: Foster a community of collaboration/knowledge sharing across all Control Owners in Global Defense - understanding the implication a change in one control area has on other control areas. Building and maintaining constructive working relationships with a diverse community of technical and non-technical audiences.
Training and Awareness: Develop and deliver training and awareness programs to educate stakeholders and communities within Cyber about the Network Security control strategy.
requirements-expected :
Deep understanding of technology (preferably in the Network Security area) or who is willing to build up knowledge quick.
Ability to communicate complex technical information to non-technical stakeholders and explain Network Security control policies and procedures in a clear and concise manner to senior stakeholders.
Experience in managing relationships with stakeholders, including business units and audit/regulatory bodies.
Educational background preferably in IT or relevant experience.
offered :
Competitive salary
Annual performance-based bonus
Additional bonuses for recognition awards
Multisport card
Private medical care
Life insurance
One-time reimbursement of home office set-up (up to 800 PLN)
Corporate parties & events
CSR initiatives
Nursery discounts
Financial support with trainings and education
Social fund
Flexible working hours
Free parking
benefits :
sharing the costs of sports activities
private medical care
sharing the costs of professional training & courses
