Role Overview
The Head of Cyber Assurance is a key leadership position within Barclays' Cyber Posture and Assurance function, part of the Chief Information Security Office, with enterprise-wide responsibility.
This role is accountable for defining, implementing, and evolving the strategy for cyber assurance testing across the enterprise, ensuring comprehensive remediation of findings across the bank.
Responsibilities
* Oversee development and execution of testing frameworks, lead a team of Cyber Assurance Subject Matter Experts, and ensure activities evaluate emerging threats and regulatory standards.
* Conduct broader analysis to manage risks effectively, identify root causes, and foster continuous improvement.
* Collaborate with stakeholders across business, Technology, Operational Risk, Internal Audit, and security leadership to promote a culture of security assurance.
* Incorporate threat intelligence insights into testing programs to simulate real-world attack vectors.
* Ensure testing activities comply with standards such as ISO 27001, NIST, PCI DSS, GDPR, and support audit requirements.
Experience
Experience in information security and/or technology with leadership focus on assurance testing, controls enforcement, red/blue teaming, or vulnerability management.
Purpose of the Role
Serve as a primary liaison among business, technology, and security functions to ensure the confidentiality, integrity, and availability of information and support security risk mitigation.
Accountabilities
* Engage with stakeholders to understand security requirements and enhance risk management.
* Perform risk assessments to identify cybersecurity threats, prioritize them, and communicate findings to senior stakeholders.
* Develop and implement security policies and procedures aligned with the risk management framework.
* Manage the implementation, testing, and monitoring of security controls across IT systems.
* Conduct training sessions to educate employees and promote cybersecurity awareness.
* Manage complex cybersecurity incidents by collaborating with IT teams and response experts.
* Identify emerging cybersecurity trends, threats, and technologies to address risks by adopting new security solutions.
Director Expectations
* Manage a business function, contribute to strategic initiatives, and influence policies and procedures.
* Lead a large team or projects, act as a technical expert, and guide less experienced specialists.
* Provide advice to senior management, manage resources and budgets, and ensure regulatory compliance.
* Monitor external environment and influence regulatory and industry developments.
* Demonstrate extensive knowledge of industry practices, exercise strategic decision-making, and influence stakeholders.
All senior leaders are expected to embody leadership behaviors: Listen, Energize, Align, and Develop. Colleagues should demonstrate Barclays' values—Respect, Integrity, Service, Excellence, and Stewardship—and the Barclays Mindset—Empower, Challenge, and Drive.
#J-18808-Ljbffr