Job Description
Role: Cyber Control Lead
Location: Glasgow (Can be remote)
Inside IR35 role
JD
What you'll be doing
1. Own the controls testing plan and drive delivery of a continuous testing programme to support TOCs Strategic objectives to keep the bank safe
2. Lead the development of automation and continuous control monitoring to foster a data led controls assessment strategy
3. Lead and coach security control analysts to deliver the testing and remediation plan
4. Raise awareness of cyber risks and control best practices among employees at all levels of the organisation to further embed a good security control mindset.
5. Work closely with the Risk, Compliance and Regulatory teams to ensure regulatory compliance, including technical control compliance
6. Provide advice and support risk management responses, including risk and audit requests, regulatory requirement assessments and third-party security control capability requests.
We need you to have
1. Expert knowledge of cyber security goverance frameworks, policies, and procedures such as NIST, COBIT, CIS (Center for Internet Security) Controls
2. Understanding of cybersecurity risk management principles and practices
3. Awareness of emerging cybersecurity trends, threats, and technologies
It's a bonus if you have but not essential
1. Knowledge of security technologies, tools, and solutions used in cybersecurty programs.
2. Understanding of regulatory requirements and industry standards relevant to cybersecurity.
3. CISSP certified