At Metro Bank, we believe the best banking experience starts with people who genuinely care. We’re not just delivering banking services – we’re building trust through authentic connections. Here, our people come first; our colleagues are part of a team that values individuality, collaboration, and long‑standing relationships. Hybrid working is available where possible.
What you will do
* Develop and maintain a comprehensive DLP strategy aligned with business objectives and regulatory requirements.
* Define policies and standards for data protection and handling across the enterprise.
* Establish governance for monitoring and reporting on DLP effectiveness.
* Implement and manage DLP tools and technologies (e.g., Microsoft Purview, Symantec, Forcepoint).
* Configure and optimise DLP policies for endpoints, email, cloud, and network channels.
* Monitor alerts, investigate incidents, and coordinate remediation actions.
* Identify and mitigate risks related to data leakage and insider threats.
* Ensure compliance with GDPR, ISO 27001, PCI DSS, and other relevant frameworks.
* Maintain audit readiness and provide evidence for internal and external reviews.
* Collaborate with IT, Security, and Business teams to embed DLP controls into processes.
* Provide training and awareness to reduce human‑related data loss risks.
* Stay updated on emerging threats, technologies, and best practices in data protection.
* Introduce automation and analytics to enhance DLP efficiency and incident response.
We love people who take responsibility and do the right thing for customers, colleagues and Metro Bank. You should be able to raise any concerns.
What you will need
* A minimum of 10 years of experience in information security or data protection.
* Capability for managing DLP programs and technologies (e.g. network, endpoint, email, cloud).
* Hands‑on experience with DLP tools and integration with SIEM/SOC workflows.
* Excellent analytical, problem‑solving, and communication skills.
* Ability to lead investigations and coordinate cross‑functional teams.
* Experience building and maintaining DLP policies and use cases driven by risk assessments.
* Designing and testing DLP incident response playbooks for both malicious and accidental events.
* Defining relevant metrics and reporting for governance meetings.
* Strong understanding of data protection principles (e.g. UK GDPR), encryption, and regulatory compliance (e.g. FCA/PRA rules).
* Knowledge of Office 365 / Purview and Varonis preferred, but not essential.
* Experience undertaking risk assessments, threat modelling and data flow mappings.
* Experience utilising DLP controls to manage risk.
* Understand the risks associated with your job and what that means for you, Metro Bank and all our stakeholders.
Our promise to you
* Competitive salary, discretionary annual bonus, generous holiday allowance, attractive pension scheme, healthcare, life assurance and colleague discounts.
* Training to ensure you succeed and plenty of internal opportunities to progress your career (around 40% of recruitment comes from internal promotions).
We are inclusive and value diverse teams. If you are excited about working with us and think you can do much of what we are looking for but aren’t 100% there yet, give it a whirl. We may close a job early if we are inundated with amazing candidates. Good luck!
``` ,
#J-18808-Ljbffr