Cyber security Control Lead

Role: Cyber Control Lead

Location: Glasgow (Can be remote)

Inside IR35 role

JD

What you'll be doing

1. Own the controls testing plan and drive delivery of a continuous testing programme to support TOCs Strategic objectives to keep the bank safe

2. Lead the development of automation and continuous control monitoring to foster a data led controls assessment strategy

3. Lead and coach security control analysts to deliver the testing and remediation plan

4. Raise awareness of cyber risks and control best practices among employees at all levels of the organisation to further embed a good security control mindset.

5. Work closely with the Risk, Compliance and Regulatory teams to ensure regulatory compliance, including technical control compliance

6. Provide advice and support risk management responses, including risk and audit requests, regulatory requirement assessments and third-party security control capability requests.

We need you to have

1. Expert knowledge of cyber security goverance frameworks, policies, and procedures such as NIST, COBIT, CIS (Center for Internet Security) Controls

2. Understanding of cybersecurity risk management principles and practices

3. Awareness of emerging cybersecurity trends, threats, and technologies

It's a bonus if you have but not essential

1. Knowledge of security technologies, tools, and solutions used in cybersecurty programs.

2. Understanding of regulatory requirements and industry standards relevant to cybersecurity.

3. CISSP certified