Connecting to LinkedIn...

Security Policy, Standards, Compliance Lead

Job Title: Security Policy, Standards, Compliance Lead
Contract Type: Permanent
Location: London,United Kingdom
Industry:
Salary: Competitive
Start Date: ASAP
REF: 1000621
Contact Name: Lee Anderson
Contact Email: lee.anderson@palmmason.com
Job Published: about 2 years ago

job description

Rare opportunity – Security Policy, Standards & Compliance Lead – Manchester

My client is a national Financial Institution and a well-known household brand. They are creating a new standalone bank in the UK which will be made up of branches in England, Wales and Scotland. It will be a full service Personal, Private, SME and Corporate bank, and will be very well positioned for the future.

This is an excellent opportunity for an Information Security professional, with expertise in Security Policy, Standards and Compliance, to join a unique challenger to the existing top-tier incumbents in UK retail and corporate banking.

The Security Policy, Standards & Compliance Lead will be accountable for:
• Drive the Information Security policy of the Bank in line with the ISO27001 framework and ISF Standards of Good practice
• Maintain the bank's security standards and through effective governance, ensure there is adherence
• Support the effective operation of the IT security and information security governance model within the bank
• Ensure that the security policies and standards of the strategic partners in no way compromise the security of the bank

Essentials:
• Managerial and specialist experience in a multi-vendor, on/offshore banking environment covering both IT operations and IT Change
• Experience in defining, managing, delivering and governing an Information Security policy, defining and reporting respective Key Performance and Key Risk Indicators
• Experience of managing Security standards, policies and framework in an organisation where the majority of IT Services are outsourced to partners
• Knowledge of the legal and regulatory environment within which financial organisations operate (e.g. FCA, PRA)
• Experience of working with managed suppliers to provide effective security services and solutions that have delivered a positive step change in security compliance
• Strong negotiating, conflict resolution, influencing and stakeholder management skills to ensure effective change management across the segment / function

Key words: Security Policy, Cyber Security, Information Security, Security Consultant, Financial Services, Banking, CISSP, CISM, CISA, ISO27001, Security Standards, IT Change, Governance, GRC, Risk Management, Compliance, FCA, Security Strategy