Providing key representation for and source of expertise on all issues.
Support the delivery of tooling to implement controls ensuring compliance with Information Security policies and standards globally including any regulatory requirements.
Collaborate to drive the implementation of the enterprise wide and regional / business level IT Strategy.
Ensure information security requirements are adhered to globally by ensuring effective compliance and measures are in place.
Work closely with the team as the 1LOD function and understand strategy while maintaining visibility of their IT security risk profile, exposures and control effectiveness and to provide robust challenge to the same audience when information security risk appetites are breached.
Drive engagement with all relevant regional and global stakeholders (cyber security colleagues across Strategy and Architecture, Security Shared Services, Security Engineering and business and IT Functions).
requirements-expected :
Wide range of cyber experience across cyber with specific focus on Structured Data Security engineering
Wide range of Database Admin experience knowledge given the need to collect system event logs from the major DB platforms
Experience on Cloud Native solutions and Cloud based data structures on AWS, with knowledge of other major platforms such as GCP, Azure and AliCloud advantageous
Experience with structured data, and managing DLP technology
Experience of building, deploying and using the tooling to support Data Security and Data Integration strategies such as IBM Guardium and/or Data Security Fabric
Proven experience of successful operational management, utilising relevant tools and techniques to ensure consistent delivery
A minimum of 4/5 years Cyber experience would be beneficial
Experience working in a highly regulated environment
Promoted and led best practice in risk and compliance management in a similar organization
track record of making strategic business decisions, considering relevant risks, long term implications, commercial realities and stakeholders needs
Experience with Databricks Platform and Machine Learning modelling a bonus given the volume of data consumed
Typically educated to degree level within IT
Expertise with regular expressions, scripting and tool integration.
Regulatory engagement, experience in dealing with compliance matters, and regulatory liaison would be beneficial
Knowledge of any global regulatory requirements would be beneficial
bility to build strong relationships and communicate on complex IT Security issues with a wide spectrum of stakeholders.
Understanding of business finance and experience of effective management of budgets and expenditure
Comprehensive understanding of security in context of wider industry trends and direction
Experience of working in a financial organisation would be beneficial
Information Security Certification such as GIAC, CISSP, CISA, CRISC or ISO 27001 Lead Auditor not required, but considered a plus
benefits :
sharing the costs of sports activities
private medical care
sharing the costs of professional training & courses
