Untitled 102 2

Information Security Manager


Information Security Manager

London | England | United Kingdom

Role Purpose

BOI UK Information Security (InfoSec) focuses on the operational risks associated with the Confidentiality, Availability and Integrity of bank information, including IT Security and Cybercrime risks. The team liaises with industry organisations, Group (including Group second line teams, IT Security Change and Security Operations), UK business and COO teams.

Key Responsibilities

  • Maintain the UK InfoSec Risk & Control Assessment framework, aligned with Group, ROI and UK Operational Risk where appropriate
  • Support and challenge the creation of regular UK InfoSec Risk and Controls Assessments across brands, products and functions
  • Assess and comment on the adequacy of control design, by aligning business level risk assessments with COO/IT Security risks and controls models
  • Monitor compliance with the UK InfoSec risk appetite
  • Monitor reporting and resolution of policy breaches relating to risk and control assessments
  • Provide oversight and subject matter expertise in relation to change activity
  • Liaise with peers and 3rd parties to maintain a working knowledge of InfoSec controls, to support analysis of adequacy during risk and control assessments

Essential Qualifications

  • Minimum 5 GCSEs A-C including Maths and English

Skills & Experience

  • Extensive subject matter expertise in Information Security / Cybercrime / IT Security governance, including industry regulations, legislation, standards and best practice
  • Dynamic personality to engage, challenge and direct a dicerse range of stakeholders
Closing date: Jul 24, 2017

Thank you

What happens next?

You've seen your dream job, now what can you expect from the process?