Information & Cyber Security Governance Manager
London/Hybrid
Contract to 31/03/2026
Day rate from £600 via Umbrella Company, dependent on experience
Our commitment is to provide equal opportunity regardless of, for example, your gender, age, ethnicity, disability, sexual orientation or beliefs. We also engage with employers to develop programmes and pathways that embrace diverse talent and promote more inclusive employment worldwide through partnerships and other initiatives. We recognise and celebrate the value of difference and how it makes us faster, smarter and more innovative than our competition.
My client is one of the largest financial institutions headquartered in Japan, with an established presence across all consumer and corporate banking businesses. Through its subsidiaries and affiliates, they offer a diverse range of financial services, including commercial banking, leasing, securities, credit card, consumer finance and other services.
They are looking for Information & Cyber Security Governance Manager to join the team on an initial contract to 31st March 2026. You will be working Monday to Friday, 9am to 5pm with the occasional out of hours requirement in line with business needs.
Purpose of Job
* Enhance the Security Intra group Governance and Service Management process for EU entities in line with ECB expectations
* Maintain and update the intra group governance framework, processes and procedures and standard suite, across Information and Cyber Security within EMEA.
* Manage the intragroup relationships across AD and EMEA for Information and Cyber Security, ensuring service levels are met for all services received and/or provided.
* Deliver the production and management of relevant cyber compliance-based reports to EU entities across EMEA region, including but not limited to entity level reporting, senior management reporting, ensuring that all key security service related issues are identified, mitigated, and monitored within agreed SLA.
Accountabilities & Responsibilities
* Define intra group security governance and service management framework, requirements for all services EU receives from areas of the organisation including New York.
* Enhance and embed the operating/engagement model and service level agreement to ensure continuous oversight and service management.
* Define and maintain EU specific entity level reporting template, including metrics to support the service performance management and service operations management.
* Embed a centralised ticketing module within ServiceNow for EMEA region. Use cases relevant to security service management, service request and service issue management.
* Coordinate the relevant reporting data points from Information and Cyber Security Committees relevant to EU, including inputs to and actions arising from the committees, the preparation of Security Performance Dashboards, and tracking of improvements.
* Consistently look for improvements in the efficiency and effectiveness of Information and Cyber Security intra group Governance and Compliance reporting.
Knowledge, Skills & Experience
The post holder requires knowledge of:
* SME experience in third party service management including developing and maintaining service level agreements, metrics and compliance requirements.
* In depth knowledge of third-party regulations across UK and EU such as DORA, ECB's EBA, PRA and related standards
* Information and Cyber Security Frameworks and industry Standards (e.g., NIST/ISO 27001/COBIT/ITIL)
* Experience creating and delivering presentations and concise writing skills to produce clear documentation (security policy, senior management posture reports)
* Excellent inter-personal communication skills, able to liaise with all levels of the business across all regions including key stakeholders and senior management.
* Stakeholder management, including working with diverse teams in EMEA, North America, Ireland and Japan
Skills
* Project Management Skills
* Policy design and technical authoring
* Microsoft suite – highly desirable
Candidates must show evidence of the above in their CV to be considered.
Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you.