A Highly-Innovative Global Commercial Bank have a newly created position for CISO to join their team on a permanent basis. The UK office is in the City of London.
ABOUT THE COMPANY
Their clients are the game changers, leaders and investors who fuel the global innovation economy. They're the businesses behind the next medical breakthroughs. And the visionaries whose new technologies could transform the way people live and work.
They come to the organisation for their expertise, deep network and nearly forty years of experience in the industries they serve, and to partner with diverse teams of passionate, enterprising, dedicated to an inclusive approach to helping them grow and succeed at every stage of their business.
Join them and be part of bringing their clients' world-changing ideas to life. They have the opportunity to grow and collectively make an impact by supporting the innovative clients and communities they serve. They pride themselves in having both a diverse client roster and an equally diverse and inclusive organisation. And they work diligently to encourage all with different ways of thinking, different ways of working, and especially those traditionally underrepresented in technology and financial services, to apply.
ABOUT THE ROLE
The CISO is responsible for bridging the gap between the centralized cybersecurity department and the business interests of the bank's international divisions. This individual will serve as the dedicated resource for this line of business and communicate closely to ensure adherence to enterprise cyber policies. The CISO will be required to align all policies, procedures, strategies and methodologies in accordance with the Global Security Office. This individual will be required to serve as the liaison / point of contact for all cybersecurity related matters, including controls / issues management, risk articulation, as well as metrics and reporting.
Responsibilities:
Responsible for developing and maintaining an intensive understanding of the assigned business functions, technologies utilized, clientele, processes, procedures, and business partners.
Responsible for the management and oversight of cybersecurity controls / issues management, risk articulation, as well as metrics and reporting for the assigned line of business.
Identify areas of non-compliance and develop remediation plans.
Oversee, manage, and responsible for the implementation of technical and non-technical controls for business objectives.
Responsible for the implementation and alignment of cybersecurity policies and procedures across assigned business function(s).
Ensure adherence to all cybersecurity policies and procedures.
Lead cybersecurity related initiatives within the assigned business function.
Produce and present metrics and reporting on a regular basis to stakeholders both internal and external
Serve as key point of contact and liaison for security incidents impacting the assigned business function(s).
Define and present critical risk KPI’s to internal and external stakeholders as required.
Act as a source of guidance for cybersecurity matters within the business function.
Work closely with all lines of defense and business functions such as Business Enablement, Risk Management, Compliance, Legal, etc. across the bank's enterprise.
Act as the main point of contact for assign business functions for cyber security related matters.
Knowledge:
Experience designing and implementing global enterprise security solutions.
Extensive knowledge of cybersecurity controls, both technical and non-technical.
Knowledge of Cybersecurity Frameworks (CRI preferred)
Knowledge of Banking Industry or other federally regulated fields.
Knowledge of applicable international laws and regulations.
Skills:
Demonstrate a consistent history of delivering on time commitments.
Demonstrate critical thinking and problem-solving.
Excellent communication skills, both written and verbal, to both business and technology audiences.
Fluency or proficiency in more than one language preferred
Competencies:
Aptitude to understand and adapt to newer technologies.
A grounded understanding of applied enterprise information security technologies.
Able to work independently with limited supervision.
Education and Experience:
Extensive experience within Cyber Security / Information Security
Extensive experience in communicating security requirements to non-technical staff, management, and other stakeholders.
Experience in the design and implementation on mission critical solutions in multi-faceted environments.
High critical thinking skills to solve complex problems.
Ability to complete tasks with minimal supervision.
Ability to comprehend and digest complex system and architecture interdependencies.
Advanced degree in cybersecurity related field preferred
Certifications:
List any certifications that are required or preferred (i.e. Series 6 – required; Series 7 – preferred)
Certified Project Management Professional (PMP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information System Security Professional (CISSP) – Preferred
Travel
Travel may be occasionally required
Travel 25% of the time is anticipated
BENEFITS
Private Medical Insurance
Telemedicine
Health Assessments
Dental Insurance
Eye Care
Holidays
Wellness (Employee Assistance Program, Gym Subsidy, and Ride to Work Scheme)
Transportation
Group Personal Pension Scheme
Disability and Life Assurance
Employee Stock Purchase Plan (ESPP)
Travel Insurance (Business Travel Insurance and Personal Travel Insurance)
Employee Referral Program
Family Bonding Time (Enhanced Maternity/Adoption Leave, Paternity Leave, Shared Parental Leave, and Special Parental Leave)
Developing and Giving Back (Learning Opportunities, Employee Recognition, and Matching Gift and Community Involvement Program)