BISO - Business Information Security Officer
Join to apply for the BISO - Business information Security Officer role at Barclays
City Of London, England, United Kingdom
Purpose of the role: To provide a primary liaison service between the business, technology, and security functions in order to ensure the confidentiality, integrity and availability of information and support the mitigation of security risk.
Qualifications
* Experience as an Engineer and Architect delivering complex infrastructure solutions and Integration
* Expert design and solutions on cloud security, including cloud & SaaS security architecture, access control, data protection with a strong understanding of cloud computing platforms (AWS, Azure, GCP)
* Implementing cloud‑specific security strategies, policies, and procedures, ensuring alignment with overall business goals and regulatory requirements, especially those related to data privacy and security.
* Identifying, assessing, and mitigating security risks associated with infrastructure and data platforms, working with the platform engineering team on how to implement.
* Experience of Architecture Frameworks and application of security principles into strategic architectures
* Build consensus across CISO and business units with a view to driving the data security solutions across the organization.
* Expertise in modern data platforms preferably with experience in Databricks and Snowflake implementations.
* Relevant certifications such as cloud‑specific certifications (e.g. AWS Certified Security – Specialty) would be preferable.
Accountabilities
* Collaboration with stakeholders to understand their security requirements in business processes and IT projects, to enhance overall risk management.
* Execution of risk assessments to identify and prioritise potential cybersecurity threats that could impact the bank’s operations and data, guide the implementation of mitigation strategies, and communicate findings to relevant senior stakeholders.
* Collaboration with business units to develop and implement security policies and procedures for bank operations aligned to the risk‑management framework.
* Management of the implementation, testing and monitoring of security controls across the bank’s IT systems to ensure the effectiveness of controls and mitigation of risk.
* Execution of training content and sessions to educate employees, enhance cybersecurity awareness and provide guidance on safe online practices.
* Management of complex cybersecurity incidents by collaborating with IT teams and response experts to effectively resolve cases through analysis, expertise support and project supervision.
* Identification of emerging cybersecurity trends, threats, and new technologies to address potential risks by advocating the adoption of new security solutions.
Director Expectations
* To manage a business function, providing significant input to function‑wide strategic initiatives. Contribute to and influence policy and procedures for the function and plan, manage and consult on multiple complex and critical strategic projects, which may be business wide.
* They manage the direction of a large team or sub‑function, leading other people managers and embedding a performance culture aligned to the values of the business. Or for an individual contributor, they lead organisation‑wide projects and act as deep technical expert and thought leader, identifying new ways of working and collaborating cross‑functionally. They will train, guide and coach less‑experienced specialists and provide information affecting long‑term profits, organisational risks and strategic decisions.
* Provide expert advice to senior functional management and committees to influence decisions made outside of own function, offering significant input to function‑wide strategic initiatives.
* Manage, coordinate and enable resourcing, budgeting and policy creation for a significant sub‑function.
* Escalates breaches of policies / procedure appropriately.
* Foster and guide compliance, ensure regulations are observed and relevant processes are in place to facilitate adherence.
* Focus on the external environment, regulators, or advocacy groups to both monitor and influence on behalf of Barclays, when appropriate.
* Demonstrate extensive knowledge of how the function integrates with the business division / Group to achieve the overall business objectives.
* Maintain broad and comprehensive knowledge of industry theories and practices within own discipline alongside up‑to‑date relevant sector / functional knowledge, and insight into external market developments / initiatives.
* Use interpretative thinking and advanced analytical skills to solve problems and design solutions in often complex/sensitive situations.
* Exercise management authority to make significant decisions and certain strategic decisions or recommendations within own area.
* Negotiate with and influence stakeholders at a senior level both internally and externally.
* Act as principal contact point for key clients and counterparts in other functions/ businesses divisions.
* Mandated as a spokesperson for the function and business division.
Seniorities & other information
* Seniority level: Director
* Employment type: Full‑time
* Job function: Information Technology
* Industries: Banking and Financial Services
Referrals increase your chances of interviewing at Barclays by 2x
#J-18808-Ljbffr