en

Services

The UK's leading employers trust us to deliver fast, efficient talent solutions that are tailored to their exact requirements. Browse our range of bespoke services and resources.

Read more
Jobs

Let our industry specialists listen to your aspirations and present your story to the most esteemed organisations in the UK, as we collaborate to write the next chapter of your successful career.

See all jobs
Services

The UK's leading employers trust us to deliver fast, efficient talent solutions that are tailored to their exact requirements. Browse our range of bespoke services and resources.

Read more
About Robert Walters UK

Since our establishment in 1985, our belief remains the same: Building strong relationships with people is vital in a successful partnership.

Learn more

Work for us

Our people are the difference. Hear stories from our people to learn more about a career at Robert Walters UK

Learn more

Information Security Assurance Lead

Save job

My client, an established Financial Services institution based in London are looking for an Information Security Assurance Lead to join their growing team in London. For this role you have to be eligible for SC Clearance (i.e. you have to have worked and lived continuously in UK last 5 years). Also, for this role you have to work two days per week in the office in London.

About the Information Security Assurance Lead role:

The role is based in Operational Assurance team, who leads on my client's cyber assurance activities working to determine that correct cyber governance and control measures are in place.

The team conducts thorough reviews, analysis and testing to confirm the appropriate application (whether through technology, process, or behavior) of the policies and the secure operation of my client's systems and the information and data thereon.

What does this role involve?:

  • Assist the Operational Assurance Manager in developing cyber assurance strategy, defining goals to align with my client's Strategy and framework
  • Oversight and monitoring my client's security strategy, implement preventive measures to protect sensitive data, and ensuring compliance with regulations. Develop effective mitigation strategies for critical cyber and privacy risks
  • Lead on the end-to-end delivery of key workstreams mainly, third party risk assessment, post incident review, threat and vulnerability assessments, security assessment (red teaming), penetration testing
  • Enhance third-party cyber risk monitoring (using a tool) and service driven assessments with analytical/ qualitative/ quantitative methods to simplify processes amidst cloud vendor changes and evolving cybersecurity needs
  • Ensure adequate monitoring capabilities for my client's supply chain are delivered via the new tooling and aligning to cyber risk metrics (and the Cyber Risk Management Framework) and key risk indicators
  • Assure and report on cyber threats and security vulnerabilities that impact supply chain performance by implementing security by design capabilities and compliance automation
  • Leading and managing an operational team with technical expertise, fostering Agile practices to build high performing cross functional team.

What skills are required?:

  • Proven experience of leading security or assurance teams, and operating Information Security/Assurance Frameworks and Services
  • Ability to effectively communicate to senior stakeholders. Translate technical issues for clear recommendations, bridging technical and leadership teams in security reporting
  • Strong understanding of Risk Management practices, and application in a global organisation
  • Experience of a hands-on role involving pen testing, 3rd party security assessment and vulnerability assessment activities of complex suppliers, applications and operating systems
  • Strong hands-on involvement in the delivery and execution of more than one of the areas listed in the job description key responsibilities
  • Demonstrate strong operating knowledge NIST 800, OWASP, ISO27001 and data protection
  • Ability to plan strategically, arrange and consolidate resources in order to deliver assurance services to achieve CIR assurance objectives
  • A technical qualification/professional certification in Information Security & Privacy
  • Stakeholder management experience at all levels

If the above is of interest please let me know or call me on 0207 509 8040 to find out more.

Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates

Contract Type: FULL_TIME

Specialism: Information Technology

Focus: Information Security

Industry: Banking

Salary: £70,000 - £90,000 per annum

Workplace Type: Hybrid

Experience Level: Senior Management

Location: London

Job Reference: 35FZSD-1C9D4FF5

Date posted: 20 January 2025

Consultant: Darius Goodarzi

I'm Robert Walters Are you?

Come join our global team of creative thinkers, problem solvers and game changers. We offer accelerated career progression, a dynamic culture and expert training.