Information Security Director

2 days ago

Apply Now

Receive Emails with Similar Jobs

Starling Bank

WebsiteLinkedInAll Job Openings

Forget everything you know about banking.

FinTech • Mobile Banking • Finance • Banking • Banking as a Service

1001 - 5000

Description

• Manage and maintain the Information Security Policy Framework across Starling Bank that addresses the needs of the Bank, its customers, employees and other stakeholders in line with relevant legislation and industry standards. • Oversee the Bank’s Information and Cyber Security systems, processes and procedures, and optimise reporting of identified threats and vulnerabilities. • Manage the Bank’s developing Information Security and Cyber Maturity Framework, including security controls assessment, and mapping of the plan to attain accreditation, e.g. ISO/IEC 27001. • Maintain the Information Security Risk Register and ensure coherence with the Bank’s Risk Management framework. • Act as an Information Security point of contact for Business Continuity and Crisis Management Planning; this includes responsibility for initiation and execution of cyber business impact analysis. • Oversee and contribute to Cyber Incident Response and ensure coherence with the broader business operational and technology response capability. • Liaise with external bodies and organisations to keep abreast of emerging trends, technologies and legislation that have an impact on Information Security. • Assist as necessary to investigate security breaches and pursue associated disciplinary and legal matters.

Requirements

• be a Self Starter with the ability to lead, inspire and drive change through an organisation. • have the ability to be pragmatic while balancing the needs of the Bank against security. • have an ability to think and plan strategically and systematically while recognizing the need to deliver to the business requirements. • have previous experience working in an operational security role within a financial services or complex IT organisation encompassing service delivery, application development and IT infrastructure. • an understanding of best practice within Information Security and risk management including standards such as ISO/IEC 27001, NIST, Cyber Essentials and COBIT. • an understanding of legislation and regulations that impact Information Security within Financial Services. • an understanding of wider legislation and regulations that impact information Security. E.g. Data Protection Act and GDPR, Freedom of Information Act • An understanding of current and emerging threats and countermeasures and the organisational challenges to addressing these threats. • An understanding of Security threats and countermeasures. • A good practical knowledge of security technologies and wider business solutions including Identity and access management, SIEM, remote working and cloud technologies. • Share knowledge and provide guidance on internal bank first line related processes. • Take responsibility and do the right thing for customers, colleagues and partners. • It would be great if you have one or more of the following qualifications, but it’s not essential; Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), or Certified Information systems Auditor.

Benefits

• 25 days holiday (plus take your public holiday allowance whenever works best for you) • An extra day’s holiday for your birthday • Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off • 16 hours paid volunteering time a year • Salary sacrifice, company enhanced pension scheme • Life insurance at 4x your salary & group income protection • Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton • Generous family-friendly policies • Incentives refer a friend scheme • Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks • Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing