VP Cyber Security Risk Manager

To assist with the development of the firm’s Second Line of Defence capabilities (policies, procedures, risks

and controls) to manage Information Security and Cyber risk in London and further support across the

EMEA region, in line with regulatory requirements, and to support the achievement of the Bank

KEY RESPONSIBILITIES

• Assist with the continuous embedding of the Operational Risk framework for the Technology and Cyber

risks and controls within the Technology function working in conjunction with the First Line teams and

Head Office.

• Monitoring regulatory changes in approach to Technology and Cyber and recommend changes

enhancements to the Control framework.

• Support the development and delivery of medium to long term objectives and actions within the

framework, including greater oversight and additional testing of the Technology and Cyber Controls and

RCSA’s.

• Participate actively in the delivery of changes, enhancements and projects in conjunction with the Cyber

Security teams.

• Provide robust challenge to the First Line of Defence as they identify, assess, manage and report their

risks and issues through various tools and activities including risk and control assessments, key

indicators, issue and incident management, and control assurance.

• Deep dive on the Technology and Cyber KPI/KRI’s monitoring monthly trends and threats. Provide

challenge on a SME level to the 1st line.

• Perform Second Line of Defence activities in the evaluation of risks for new products, systems and

material change projects.

• Provide subject matter expertise, and monitor and communicate the risk environment to management,

and other key stakeholders effectively.

• When required, supervise junior members of the team in second line oversight, business-as-usual (BAU)

activities and change initiatives.

• Assist in the creation and maintenance of a good 3LoD model and work across the region to promote

Technology and Cyber Awareness and 2nd line challenge.