manage responses to customer security audits and assurance inquiries. Monitor regulatory changes and contribute to compliance initiatives such as DORA , NIS2 , and other applicable standards and frameworks (e.g., ISO27001, SOC 2, GDPR). Assist in the development, maintenance, and improvement of internal GRC processes, policies, and documentation. Collaborate with cross-functional teams (Security … a related field. Experience supporting sales processes, including responding to RFx security assessments. Solid understanding of cybersecurity principles, information security best practices, and regulatory requirements (DORA, NIS2, GDPR, ISO27001, SOC 2, etc.). Excellent written and verbal communication skills; able to translate technical concepts for non-technical audiences. Strong organizational skills with the … a proactive approach to problem-solving and attention to detail. Experience working in a SaaS, cloud, or technology-driven company is preferred. Professional certifications (such as CISM, CRISC, ISO27001Lead Implementer /Auditor, or similar) are a plus Additional Information We are proud to foster a diverse More ❯
risk evaluations. Act as the Bank's IS technical consultant on Supplier and Project Assurance activities. Oversee the administration of the SureCloud platform and baseline control set maintenance. Lead security triaging and approvals of new projects and suppliers. Liaise with IT and MSSP teams to identify and remediate security risks / incidents. Draft reports, risk register updates … and maintain documentation aligned with best practice (ISO27001, NIST CSF). Track and advise on industry security trends and their implications. Contribute to social engineering assessments, BAU risk mitigation, and business process evaluations. Influence and support change by aligning policy updates with new regulations and business needs. What We're Looking For A … Bachelor's or Master's degree (preferably in IT, Security, or Risk). At least one recognised IS qualification (CISM, CISA, CISSM, ISO27001LeadAuditor/ Implementer, CIPP / E). Proven experience in delivering project and supplier assurance activities in the IS domain. Strong written and More ❯
risks arising from third parties are mitigated. Maintain awareness of innovative thinking, industry practice and governance around data security risk operation programs as relevant to Visa. Support compliance lead with the EMV testing requirements waivers for payment terminals and cards including assessment and review prior to signoff. Support compliance lead with waiver and change … requests to Visa rules on behalf of Europe risk. Support compliance lead on regularly delivering reporting on the health of the compliance programs. Represent Visa in security-forums including PCI events. This is a hybrid position. Expectation of days in office will be confirmed by your Hiring Manager. Educated to degree level in a relevant discipline or … appropriate solutions and providing the leadership to effectively implement change. Self-driven, demonstrated excellence in leading risk and / or compliance programs. Preferred Qualifications Security certifications (CISSP, CISA, ISO27001LeadAuditor) Knowledge, understanding and experience of risk management practices in financial services Knowledge of the UK and More ❯