City of London, London, United Kingdom Hybrid / WFH Options
CLS Group
Stay abreast of industry trends, frameworks, and regulations (e.g., GDPR, ISO 27001/2, SANS Top 20 Critical Security Controls, NIST CSF, SP 800-53, PFMI, CPMI ISOCO and FFIEC handbook, SABSA) to ensure the organization is proactive in addressing emerging security threats and compliance challenges Foster relationships with key functional teams such as IT, Compliance, Operations, Finance, HR, Internal More ❯
Stay abreast of industry trends, frameworks, and regulations (e.g., GDPR, ISO 27001/2, SANS Top 20 Critical Security Controls, NIST CSF, SP 800-53, PFMI, CPMI ISOCO and FFIEC handbook, SABSA) to ensure the organization is proactive in addressing emerging security threats and compliance challenges Foster relationships with key functional teams such as IT, Compliance, Operations, Finance, HR, Internal More ❯
London, England, United Kingdom Hybrid / WFH Options
CLS-Group
Stay abreast of industry trends, frameworks, and regulations (e.g., GDPR, ISO 27001/2, SANS Top 20 Critical Security Controls, NIST CSF, SP 800-53, PFMI, CPMI ISOCO and FFIEC handbook, SABSA) to ensure the organization is proactive in addressing emerging security threats and compliance challenges Foster relationships with key functional teams such as IT, Compliance, Operations, Finance, HR, Internal More ❯
cloud computing platforms (e.g., Azure) in a regulated environment. Familiarity with data analytics platforms and financial data governance tooling. Strong working knowledge of financial compliance frameworks (e.g., GLBA, SOX, FFIEC CAT, NYDFS). Familiarity with privacy regulations (GDPR, CCPA) and best practices in data governance. Certifications such as CISSP, CISM, CISA, CRISC, or Certified Data Protection Officer (CDPO) are highly More ❯
Risk, Operational Risk, Technology, Vice President, London Job Description RISK The Risk Division is a team of specialists charged with managing the firm’s credit, market, liquidity, operational and capital risk. Whether assessing the creditworthiness of the firm’s counterparties More ❯
team. Participate in IAM audit and review access control reports to identify potential risks. Business facing experience. Desirable Knowledge of Technical/Cyber Security risk frameworks (e.g. ISO27001, NIST, FFIEC) Experience of documenting IAM processes and procedures. Flexibility in working in a 24/7 shift model Risk Management processes. Incident management. Splunk experience. ServiceNow experience. Technical graduate. We are More ❯
NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Executing advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Program and project manage GRC delivery engagements • Participate in strategic risk management and regulatory compliances transition and transformation engagements. • Develop knowledge base, re-usable components for GRC advisory services. … Excellent technical capabilities around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST More ❯
in IT Risk Management within the banking or financial services sector. -In-depth knowledge of ITSA, BIA, EIM, DR, and Cyber Security collaboration. -Strong understanding of regulatory requirements (e.g., FFIEC, ISO 27001, NIST, GDPR, etc.). -Familiarity with IT governance frameworks such as COBIT, ITIL, and risk frameworks like COSO or ISO 31000. -Experience conducting or supporting internal audits, control More ❯
in IT Risk Management within the banking or financial services sector. -In-depth knowledge of ITSA, BIA, EIM, DR, and Cyber Security collaboration. -Strong understanding of regulatory requirements (e.g., FFIEC, ISO 27001, NIST, GDPR, etc.). -Familiarity with IT governance frameworks such as COBIT, ITIL, and risk frameworks like COSO or ISO 31000. -Experience conducting or supporting internal audits, control More ❯
team. Participate in IAM audit and review access control reports to identify potential risks. Business-facing experience. Desirable Knowledge of Technical/Cyber Security risk frameworks (e.g. ISO27001, NIST, FFIEC). Experience of documenting IAM processes and procedures. Flexibility in working in a 24/7 shift model. Risk Management processes. Incident management. Splunk experience. ServiceNow experience. Technical graduate. We More ❯
management, security governance, and analytical thinking Emerging knowledge of relevant regulatory frameworks and industry guidelines, such as NIST, ISO, CRI Profile, and regional or jurisdictional regulatory frameworks such as FFIEC, and GDPR Developing knowledge of controls industry Preferred qualifications, capabilities, and skills Ability to manage a varied workload as required by regulatory bodies. Good understanding of ITIL Technology processes (IT More ❯
management, security governance, and analytical thinking Emerging knowledge of relevant regulatory frameworks and industry guidelines, such as NIST, ISO, CRI Profile, and regional or jurisdictional regulatory frameworks such as FFIEC, and GDPR Developing knowledge of controls industry Preferred qualifications, capabilities, and skills Ability to manage a varied workload as required by regulatory bodies. Good understanding of ITIL Technology processes (IT More ❯
operations of PAM platforms. Partner with infrastructure, cloud, and DevSecOps teams to integrate PAM into hybrid and cloud-native environments. Risk & Compliance: Ensure alignment with global regulatory requirements (e.g., FFIEC, EBA, MAS, APRA, etc.) and internal policies .Manage audit readiness, response, and remediation related to privileged access. People & Stakeholder Management: Lead and develop a high-performing, globally distributed PAM team. More ❯
London, England, United Kingdom Hybrid / WFH Options
MUFG
Ability to handle ambiguity and make decisions and recommendations with limited data Understanding of various Cyber/IT Security frameworks e.g. NIST; ISO-27001; PCI-DSS; EBA-ICT and FFIEC Solid analytical/problem-solving skills with capability to identify solutions to unusual and complex problems Please note MUFG operate a hybrid working policy with 3 days per week in More ❯
cases and business logic for continuous controls monitoring, and partnering with product and engineering teams to develop and implement Good working knowledge of technology-relevant financial services regulation (., FFIEC handbooks, Good working knowledge of common & current information technology implementations (additional weight given for familiarity with Public and Private Cloud Implementation) Inquisitive nature and comfort challenging current practices; proven track More ❯
cases and business logic for continuous controls monitoring, and partnering with product and engineering teams to develop and implement Good working knowledge of technology-relevant financial services regulation (e.g., FFIEC handbooks, etc.) Good working knowledge of common & current information technology implementations (additional weight given for familiarity with Public and Private Cloud Implementation) Inquisitive nature and comfort challenging current practices; proven More ❯
years of IT experience with hands-on experience in technology support/SRE functions Strong knowledge of Regulatory requirements, Industry frameworks and best practices such as ITIL V4, COBIT, FFIEC, NIST, etc Knowledge of SDLC/Engineering processes and methodologies Proven experience in IT Service Management, including but not limited to Change Management, Incident and Problem management. Strong communication and More ❯
London, England, United Kingdom Hybrid / WFH Options
Globalhrcommunity
platform Experience with Conducttr platform Familiarity with Salesforce Shield, Event Monitoring, and encryption features Understanding of business continuity and disaster recovery frameworks (e.g., ISO 22301, NIST SP 800-34, FFIEC) Working knowledge of data governance, compliance (e.g., GDPR, HIPAA), and audit readiness Soft Skills Excellent documentation, communication, and problem-solving skills Please note you must currently be eligible to work More ❯
skills are required Strong analytical, organizational, and problem-solving skills are required Must be highly flexible and adaptable to change Experience in a highly regulated environment, specific experience with FFIEC, OSFI, PCI-DSS, SOX preferred Skills/Qualifications: Proven work experience. Information Security Certification Working with Us: As a Northern Trust partner, greater achievements await. You will be part of More ❯
Boston, England, United Kingdom Hybrid / WFH Options
Northern Trust
key risk messages to senior leadership. Skills and Qualifications include: Understanding of frameworks and regulations such as COBIT, NIST, TOGAF, DORA, DCAM, DAMA-DMBOK, PMBOK, EU AI Act, and FFIEC requirements. Experience in evaluating IT risks and controls, especially in financial services. Strong knowledge of data governance and management concepts, with experience in financial services preferred. Ability to understand emerging More ❯
CCSP, AWS Security Fundamentals, AWS Certified Security). Working knowledge of the following frameworks and regulations: ISO 27001/2, SANS Top 20 Critical Security Controls, NIST CSF, and FFIEC handbook. Excellent package on offer Hybrid, 2 days onsite/City of London Ideally from a Financial Services background/regulated markets. Apply For Job #J-18808-Ljbffr More ❯
ISO, ISACA frameworks. Experience in developing use cases for continuous controls monitoring and collaborating with product and engineering teams. Good understanding of financial services regulations relevant to technology (e.g., FFIEC). Knowledge of current technology implementations, including cloud solutions. Inquisitive, challenging current practices, and influencing skills. Ability to build relationships with senior executives and across organizational boundaries. Strong organizational and More ❯
to Cloud so any experience here is useful e.g. IAM in Azure Understanding of designing governance and controls. Knowledge of Technical/Cyber Security risk frameworks (e.g. ISO27001, NIST, FFIEC). Ideally have worked in an Agile or SAFe environment. This is a hybrid position based in London with 3 days per week in the office. More ❯
to Cloud so any experience here is useful e.g. IAM in Azure Understanding of designing governance and controls. Knowledge of Technical/Cyber Security risk frameworks (e.g. ISO27001, NIST, FFIEC). Ideally have worked in an Agile or SAFe environment. This is a hybrid position based in London with 3 days per week in the office. More ❯
to Cloud so any experience here is useful e.g. IAM in Azure Understanding of designing governance and controls. Knowledge of Technical/Cyber Security risk frameworks (e.g. ISO27001, NIST, FFIEC). Ideally have worked in an Agile or SAFe environment. This is a hybrid position based in London with 3 days per week in the office. #J-18808-Ljbffr More ❯
