Head of Cyber Assurance - Barclays
The Head of Cyber Assurance is a key leadership position within the Barclays Cyber Posture and Assurance function, part of the Chief Information Security Office, with enterprise-wide responsibility.
This role is accountable for defining, implementing, and evolving the strategy for cyber assurance testing across the enterprise, ensuring that all findings are comprehensively remediated across the bank.
Responsibilities include overseeing the development and execution of testing frameworks, leading a team of Cyber Assurance Subject Matter Experts, and ensuring assurance activities evaluate emerging threats and regulatory standards effectively.
The role also involves broader risk analysis, root cause identification, and fostering continuous improvement. The Head collaborates extensively with stakeholders across Business, Technology, Operational Risk, Internal Audit, and senior security leadership to promote a security assurance culture.
Key areas include:
* Integrating threat intelligence into testing programs to simulate real-world attack vectors.
* Ensuring testing activities comply with standards like ISO 27001, NIST, PCI DSS, GDPR, and facilitating audits.
* Experience in information security or technology leadership, focusing on assurance testing, controls, red/blue teaming, or vulnerability management.
Purpose of the Role
To serve as the primary liaison between business, technology, and security functions, ensuring the confidentiality, integrity, and availability of information, and supporting security risk mitigation.
Accountabilities
* Collaborate with stakeholders to understand security requirements and enhance risk management.
* Conduct risk assessments, prioritize threats, and communicate findings to senior stakeholders.
* Develop and implement security policies aligned with the risk management framework.
* Manage security controls across IT systems, ensuring effectiveness.
* Provide cybersecurity training and awareness sessions.
* Lead response to cybersecurity incidents with IT and response teams.
* Identify emerging threats and advocate for new security solutions.
Director Expectations
* Manage a business function, influence strategic initiatives, and contribute to policy development.
* Lead teams or projects, provide technical expertise, and guide less experienced staff.
* Advise senior management and committees, manage resources and budgets.
* Ensure regulatory compliance and monitor external environment for risks and opportunities.
* Demonstrate industry knowledge, problem-solving skills, and stakeholder influence.
* Act as a principal contact and spokesperson for the function.
All senior leaders are expected to embody leadership behaviors aligned with Barclays' values and demonstrate the Barclays Mindset to empower, challenge, and drive organizational success.
#J-18808-Ljbffr