Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Manage cyber security compliance and support the Bank's security operations.
- Company: BACB plc is a UK bank specialising in trade finance and investment in Africa and the Middle East.
- Benefits: Enjoy hybrid working with 3 days onsite and 2 from home, plus competitive perks.
- Why this job: Join a dynamic team focused on innovative cyber security solutions in a reputable banking environment.
- Qualifications: Degree level education and at least one security accreditation required; experience in cyber security essential.
- Other info: This is a fixed-term contract role based in the City of London.
The predicted salary is between 60000 - 84000 £ per year.
BACB is a UK bank that offers trade finance and investment expertise to clients in specialist markets, especially Africa and the Middle East. We have been helping businesses with trade finance and complementary products for over half a century, focusing on trade flows to and from Africa and the Middle East as well as real estate in the UK. Our in-depth knowledge of the countries and practices where our clients operate ensures that we put them first.
Hybrid Working: 3 days onsite, 2 from home
Location: City of London
Contract Type: Fixed Term Contract
Job Summary: Reporting to the Head of Operational Risk and working closely with the Head of Information Security, the role will support in managing the Bank’s Second line of Defence (2LOD) for cyber security, assuring compliance with the Bank's Information Security Policies and Standards and overseeing the effective implementation of security controls through engagement with the Bank’s cyber security operations team (1LOD).
Key Work Outputs and Accountabilities:
- Supporting the management of the Bank’s Cyber Security function maintaining compliance with our NIST based cyber security framework.
- Responsible to Head of Operational Risk for Information Security RCSA framework, in particular regulatory compliance, and tolerated risk exposure.
- Act as Cyber Security expert within the Second Line of Defence (2LOD), providing advice and guidance to 1LOD on best practice cyber security and to business driven change activity.
- Working with the Bank’s Enterprise Architect to ensure solutions are delivered in accordance with BACB’s IT Security policies and Standards.
- Ensure the Bank can effectively respond and recover from Cyber Security Incidents.
- Working with the Head of Information Security on ways to defend the Bank from current cyber threat landscape, identifying emergent threats and recommending innovative controls and mitigations.
- Work together with the 1LOD and provide evidence that IT Security operations are within risk tolerances (e.g., Evergreen IT, Patching, Vulnerability scanning and Pen Testing) (supported by a 2nd member of the 2LOD team).
- Oversee compliance with the Bank’s cyber security standards and policies liaising with CIO (1LOD) where responsibility spans Lines of Defence.
- Maintain security performance metrics/ KPIs, recommending improvements where appropriate.
- Effective use of specialist tools and logging to review the Bank’s cyber status and perform requested “deep dives” as necessary as well as define automated alerting mechanisms, ensuring that these alerts can be assessed and investigated independently by 1LOD and 2LOD.
- Engaging with the CIO and the Head of Information Security to ensure that sufficient/ effective cyber defences are implemented, giving the Bank value for money for any procured Cyber Security solutions, including Cyber Risk Insurance.
- Responsibility for the effective bank-wide cyber security training and awareness.
Required Qualifications and Experience:
- Educated to degree level (or equivalent), possessing at least one security accreditation (e.g., CISM or CISSP).
- Good working knowledge of cyber security standards (i.e. NIST, ISO 27001, Cyber Essentials, GDPR).
- Previous experience in the practical use and management of products such as Defender, Darktrace, and Mimecast.
- IT security management knowledge, skills, and experience.
- Familiarity with firewall rulesets and the requirements for effective cyber defence.
- Familiar with the Microsoft stack from Desktop products to server products to Azure.
- Working in Financial Services or another regulated market, such as aviation or energy.
- Managing the delivery of an organization-wide information security related strategy.
- Knowledgeable in common Data Leakage reasons and effective prevention.
- Working with on-premise, public and/or hybrid cloud environments.
- Conducting security-based investigations, the management of such inquiries and liaison with external BACB engaged investigation parties.
Seniority level: Mid-Senior level
Employment type: Contract
Job function: Information Technology
Industries: Banking
Information Security Manager employer: BACB plc
Contact Detail:
BACB plc Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Manager
✨Tip Number 1
Network with professionals in the banking and cyber security sectors. Attend industry events or webinars where you can meet people who work at BACB or similar institutions. Building these connections can give you insights into the company culture and potentially lead to a referral.
✨Tip Number 2
Stay updated on the latest trends and threats in cyber security, especially those relevant to the banking sector. Being knowledgeable about current issues will not only help you in interviews but also demonstrate your commitment to the field.
✨Tip Number 3
Familiarise yourself with BACB's specific operations and their approach to trade finance and investment. Understanding their business model and how cyber security fits into it can help you tailor your discussions during interviews.
✨Tip Number 4
Prepare to discuss your experience with specific tools mentioned in the job description, such as Defender, Darktrace, and Mimecast. Be ready to provide examples of how you've used these tools to enhance security in previous roles.
We think you need these skills to ace Information Security Manager
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in information security, particularly in relation to the NIST framework and any specific tools mentioned in the job description, such as Defender or Darktrace.
Craft a Strong Cover Letter: In your cover letter, emphasise your understanding of the banking sector and how your skills align with BACB's needs. Mention your security accreditations and any experience you have in managing cyber security functions.
Showcase Relevant Experience: When detailing your work history, focus on your previous roles that involved compliance with cyber security standards and your ability to manage risk exposure. Use specific examples to demonstrate your expertise.
Highlight Soft Skills: In addition to technical skills, highlight your communication and collaboration abilities, especially since the role involves working closely with various teams. Mention any experience you have in training and raising awareness about cyber security.
How to prepare for a job interview at BACB plc
✨Showcase Your Cyber Security Knowledge
Make sure to brush up on your knowledge of cyber security standards like NIST and ISO 27001. Be prepared to discuss how you've applied these frameworks in previous roles, especially in a banking or regulated environment.
✨Demonstrate Your Problem-Solving Skills
Prepare examples of how you've identified and mitigated cyber threats in the past. Highlight your experience with tools like Defender and Darktrace, and be ready to explain how you would approach current threats facing BACB.
✨Understand the Business Context
Research BACB's operations, particularly their focus on trade finance and investment in Africa and the Middle East. This will help you tailor your responses to show how your skills can directly benefit their specific market needs.
✨Prepare for Scenario-Based Questions
Expect questions that ask how you would handle specific cyber security incidents or compliance challenges. Think through potential scenarios and your strategic responses to demonstrate your expertise and readiness for the role.
