Cyber Security Manager

Found in: Talent UK C2 - 2 weeks ago

London, United Kingdom ICBC Standard Bank Full time

Summary


The Information Technology Risk and Cyber Security team, which is part of the IT Department, supports over 100 different applications and a wide range of infrastructure operating systems and databases across London, NY and Asia and provides security
support across the Bank.

Job Purpose
This London-based Cyber Security role is within the IT department of a Global Investment Bank. This dedicated role is to provide Cyber Security services globally. This hands-on role focusses on driving the Cyber Assurance programme end to end for the bank to reduce the bank's cyber threat landscape across the technology estate and drive the "Business As usual" cyber assurance process.

Key Responsibilities
Manage the Cyber Test and Validation process, Support Cyber Risk Assessment and drive Cyber Assurance programme across the bank through:
- Conduct cyber assessment of projects helping to drive adoption of application and infrastructure security controls and best practices.
- Advise on leading edge engineering to protect the bank's network from security risks related to web, mobile, web services, and client/server architectures.
- Conduct risk reviews of 3rd party systems and applications to assess the standard and proprietary application security controls used by the application (e.g.authentication, authorization, input validation, output sanitization, error handling, application resilience) against bank policies and standards.
- Work with different teams in various jurisdictions where specific technology and cybersecurity regulations create requirements that are not directly supported by our global framework.
- Drive implementation of security controls in various platforms by working with technology infrastructure teams. Demonstrate deep understanding, passion and thought leadership for Information and Cybersecurity and its impact of new technologies, services and solutions.
- Investigate, coordinate and address Information and Cybersecurity incidents
- Act as liaison for global team in coordinating collection and preservation of forensic evidence in support of security event investigation.
- Analyse potential infrastructure security incidents to determine if incident qualifies as a legitimate security breach.
- Collaborate with stakeholders to continually operate and improve a world-class cyber program by providing input into the uplift of sensory tools, detection tuning, and access to data sources to increase detection effectiveness.
- Convey complicated technical analysis to management via investigation synopses, graphical depictions of attacks, and comprehensive presentations.
- Act as a liaison to stakeholders, including those outside of the technology team(s), during security investigations and incidents
- Respond to regulatory requests regarding security incidents, as well as the relevant protective and detective security measures.
- Report the status of ongoing incidents, as well as the follow-up actions for resolved incidents to management
- Support Compliance, regulatory, or litigation related investigations by coordinating e-discovery, evidence collection and other such activities.
- Communicating status and risks in a succinct, direct and open manner for proper issue management life cycle tracking.
- Drafting responses to requests for information from regulators in the jurisdictions in which the bank operates
- Coordinating engagements with regulators, including periodic reporting, preparation of presentations and written deliverables
- Conducting analysis to identify potential gaps and issues from ongoing changes of regulatory requirement of relevance to the bank's business and risk environments
- Preparing presentations and written products on regulatory trends and issues to inform leadership decisions
- Coordinating with counterparts in other jurisdictions and regional stakeholders (e.g. Legal, Compliance, Operational Risk) to ensure consistent responses across all regulators

Preferred Qualifications and Experience
- Experience with a mix of Cybersecurity, Systems, Infrastructure, Network, and Cloud experience.
- Broad technical security skills in multiple technology areas such as applications deployments, endpoints, data, infrastructure, cloud, DNS, PKI, Email, OS (Windows, MAC, *NIX), SDN, encryption, forensics, authentication, firewalls, proxies, identity and access control, BC/DR, remote access, and cryptography.
- Extensive experience in architecting and engineering complex security solutions utilizing and interpreting models to implement company policies, standards globally.
- Familiarity with techniques/methodologies such as "Attack and Defensive" methods, Threat Hunting, Threat modeling, Reverse engineering, Vulnerability Management, Data modeling, Evaluation of security products/services, Metrics development, etc.
- Proficiency and experience in automation and scripting using Python, Shell, Ansible, Jenkins, etc.
- Demonstrated experience with utilizing and migrating to one or more cloud technologies such as Microsoft Azure, and AWS. Knowledge of Google Cloud Platform, Alibaba Cloud, and Microsoft Office 365 is a plus.
- Information Security and/or Information Technology industry certification (CISSP, CISM, CISSP-ISSMP, CRISC, GIAC, Azure and AWS equivalent) preferred.
- Ability to synthesize data, conceptualize and get to the root cause of processes that created the risk.
- Experience working in a multi-vendor and outsourced IT environment.
- Good understanding of COBIT and ITIL processes including change, incident and problem management.
- Experience in Financial Services is a nice to have but not mandatory.

Personal attributes:
- High level of integrity
- Demonstrable technical credibility and subject matter expert
- Ability to visualize, articulate and solve complex technical problems via sounds analytical and problem-solving skills
- Proven global team management and coordination skills
- Team player approachable, ability to share and consult others
- Demonstrable ability to plan, prioritise and manage multiple activities
- Results orientated
- Proven influence at manager level with excellent facilitation, negotiation, challenge and conflict resolution skills

  • Cyber Security Specialist

    3 weeks ago

    London, United Kingdom Cyber Spring Full time

    Job Description I am currently working with an exciting Software business looking for a Cyber Security Specialist in the UK to support a wider global security team. Working closely with the Information Security Manager, we are looking for someone to help maintain the security of the company by managing and monitoring a range of security tools and...

  • Cyber Security Sales Executive

    3 weeks ago

    London, United Kingdom Stellar Cyber Full time

    Stellar Cyber is a fast-growing Cybersecurity company focused on delivering holistic cyberattack protection to organizations while significantly reducing total costs of ownership with its innovative Open XDR (eXtended Detection and Response) platform based on advanced ML and security technologies. To accelerate our growth, we are seeking a talented Head of...

  • Cyber Security Consultant

    Found in: Talent UK 2A C2 - 5 days ago

    Greater London, United Kingdom Security Cleared Jobs Full time

    Cyber security consultant - technologiesAbout BMT We exist to navigate the most important and impactful engineering challenges of our time. We create environments where people with outstanding technical knowledge deliver meaningful, practical solutions. We are driven by a commitment to a safer, more efficient, effective and sustainable future. To find out...

  • Cloud security-Manager

    3 weeks ago

    London, United Kingdom Cyber Crime Full time

    Crown Agents Bank is a vastly growing and regulated UK bank that connects emerging and frontier markets to the rest of the world, using FX and payments technology. We are transforming the way payments and FX move through emerging markets, reducing friction so that more money gets to those who need it. Emerging markets payments are usually challenging,...

  • Cloud Security Manager

    3 weeks ago

    London, United Kingdom Cyber Crime Full time

    Crown Agents Bank is a vastly growing and regulated UK bank that connects emerging and frontier markets to the rest of the world, using FX and payments technology. We are transforming the way payments and FX move through emerging markets, reducing friction so that more money gets to those who need it. Emerging markets payments are usually challenging,...

  • Cyber Security Manager

    Found in: Talent UK C2 - 3 weeks ago

    London, United Kingdom TEKsystems Full time

    Description: TEKsystems are currently engaged with a global investment bank to source a Cyber Security Manager to lead the security aspects. This individual will have experience in the following skills;- SIEM configuration- Experience of dealing with security incidents, triage and escalation as appropriate - EDR Solution- Active Directory- Penetration...

  • Managing Consultant

    5 days ago

    London, United Kingdom Talent Order Full time

    **Full Time Managing Consultant - Cyber Security**: London - Client - Remote The primary responsibility of this role will be to provide consulting services to clients on a variety of Cyber Security topics. This includes conducting risk assessments, IAM, architecture, developing security plans, implementing security controls, and providing training and...

  • Cyber Security Advisor

    7 days ago

    London, United Kingdom Fruition IT Full time

    Job DescriptionAn excellent opportunity for an experienced **Cyber Security Advisor **to join a global media group in the middle of an ambitious cyber security development programme. The **Cyber Security Advisor **will act as a primary interface between the cyber security team and an assigned business unit, and will act as a trusted advisor to senior...

  • Information Security Consultant

    4 days ago

    City of London, Greater London, United Kingdom LT Harper - Cyber Security Recruitment Full time

    We are currently working with a fast-growth Cyber Security Consultancy, they are looking for an Information Security Consultant with strong NIST delivery skills to join on an initial 6-month contract. An Information Security Consultant with strong NIST skills An Information Security Consultant with experience delivering Cyber Security maturity...

  • Information Security Consultant

    Found in: Jooble UK C2 - 4 days ago

    City of London, Greater London, United Kingdom LT Harper - Cyber Security Recruitment Full time

    We are currently working with a fast-growth Cyber Security Consultancy, they are looking for an Information Security Consultant with strong NIST delivery skills to join on an initial 6-month contract. An Information Security Consultant with strong NIST skills An Information Security Consultant with experience delivering Cyber Security maturity...

  • Programme Manager Cyber Security

    5 days ago

    London, United Kingdom X4 Group Full time

    A leading Oil and Gas company based in central London require a Cyber Security Programme Manager to bring together a multitude of workstreams covering the full lifecycle delivery of the strategic cyber security maturity enhancements programme. You will bepart of a diverse, collaborative team responsible for the successful delivery of the Cyber Security...

  • Cyber Security Professionals

    4 days ago

    London, United Kingdom Yolk Recruitment Full time

    **Cyber Security Professionals** **Permanent/Contract** **Security Cleared Required (SC or DV)** **UK Wide** We are seeking experienced and skilled Cyber Security Professionals to join a number of Defence and National Security clients. As a Cyber Security Professional, you will play a crucial role in safeguarding our clients' digital assets and ensuring...

  • Cyber Security Specialist

    Found in: Jooble UK C2 - 3 weeks ago

    London, United Kingdom GCS Full time

    The Cyber Security Specialist holds the key responsibility of safeguarding the company's vital infrastructure, intellectual assets, and customer information from evolving cyber threats, ensuring uninterrupted operations. You will adopt a proactive stance in constructing, implementing, and managing our Cyber capabilities to bolster our defences,...

  • Cyber Security Specialist

    2 weeks ago

    London, United Kingdom GCS Full time

    Job Description The Cyber Security Specialist holds the key responsibility of safeguarding the company's vital infrastructure, intellectual assets, and customer information from evolving cyber threats, ensuring uninterrupted operations. You will adopt a proactive stance in constructing, implementing, and managing our Cyber capabilities to bolster our...

  • Cyber Security Specialist

    3 weeks ago

    London, United Kingdom GCS Full time

    The Cyber Security Specialist holds the key responsibility of safeguarding the company's vital infrastructure, intellectual assets, and customer information from evolving cyber threats, ensuring uninterrupted operations. You will adopt a proactive stance in constructing, implementing, and managing our Cyber capabilities to bolster our defences,...

  • Cyber Security Specialist

    Found in: Talent UK 2A C2 - 3 weeks ago

    London, United Kingdom GCS Full time

    The Cyber Security Specialist holds the key responsibility of safeguarding the company's vital infrastructure, intellectual assets, and customer information from evolving cyber threats, ensuring uninterrupted operations. You will adopt a proactive stance in constructing, implementing, and managing our Cyber capabilities to bolster our defences, utilizing...

  • Information Cyber Security Risk Manager

    1 week ago

    London, United Kingdom MARKJAMES SEARCH LTD Full time

    Cyber Security Risk and Assurance Manager £75k-£80k DOE, Plus Bonus & Benefits London - 3 days on site, 2 remote working Our client is currently hiring for a Cyber Security Risk and Assurance Manager to deliver the Information and Cyber Security Risk and Assurance function to enable them to operate effectively and contribute towards...

  • Cyber Security Consultant

    4 days ago

    London, United Kingdom Sanderson Recruitment Plc Full time

    **Cyber Security Consultant** Must be willing and able to **become Security Cleared** **£45,000 - £65,000** **Remote** role with travel to **London or Cheltenham** Our client, a rapidly growing IT consultancy, are looking to hire in their Cyber Consulting team due to an increase in projects and company growth. The role will involve consulting with key...

  • Trainer in Cyber Security

    2 weeks ago

    London, United Kingdom S Knights Recruitment Full time

    **Salary: £32,000** **Ref: SM4028** S Knights Recruitment is a specialist Employability & Skills Recruitment Agency. We recruit for Colleges and Training Providers across the UK. **Intro**: **Role and Responsibilities**: As a Trainer in Cyber Security you will be responsible for: - Supporting learners in achieving their cyber security qualification. -...

  • Cyber Security Risk and Assurance Manager

    1 week ago

    London, United Kingdom MARKJAMES SEARCH LTD Full time

    Cyber Security Risk and Assurance Manager £75k-£80k DOE, Plus Bonus & Benefits London - 3 days on site, 2 remote working Our client is currently hiring for a Cyber Security Risk and Assurance Manager to deliver the Information and Cyber Security Risk and Assurance function to enable them to operate effectively and contribute towards understanding of...