Product Owner - Cyber Security

Business Unit: Chief Operating Office

Salary range: £59,000 -£82,000 per annum + Red-Hot Benefits

Location: UK Hybrid Occasional travel to London/Glasgow

Contract type: Permanent Full Time

Live up to your potential. Live a life more Virgin.

Our Team

Working in Cyber Security is a big deal as we continue to play a key role in keeping Virgin Money safe. We’re on an exciting journey with a big vision as we grow our team to enhance our security and cyber operations. We’ll be working to protect against security threats to Virgin Money and the financial services sector. You’ll play an important role in helping us understand the security landscape so we can protect ourselves from risk. This helps to inform our Cyber Strategy, Culture and Education work as well as direct investments to mitigate risks and prevent and detect attacks.

The Control Tower Team supports the organisation’s overall Cyber Security capabilities specifically focusing on enhancing our security posture against attacks to ensure we remain available to customers and colleagues. As the Product Owner for Continuous Control Monitoring, you will be integral to the implementation and adoption of our data led control strategy. The role holder will oversee the end-to-end capability of the CCM tool, ensuring control metrics and data is suitably aligned to capture cybersecurity threats within the banking environment.

What you’ll be doing

• Strategic Oversight: Lead the implementation and management of data led assessments, ensuring all controls can be effectively evidenced using the CCM tool and continuously feed into the product roadmap to ensure alignment with the VM threat landscape.
• Performance Metrics: Develop and monitor key performance indicators (KPIs) and key risk indicators (KRIs) to measure the effectiveness of CCM, ensuring alignment with the bank’s risk appetite statements.
• Collaboration and Leadership: Serve as a Subject Matter Expert within the department, providing guidance and mentorship to team members. Work collaboratively with other technology teams to ensure a unified approach to assessing cybersecurity metrics across the organisation.
• Stakeholder Engagement: Using Insights, inform and advise senior management on cybersecurity issues, strategies, and risk management, ensuring a clear understanding of cybersecurity posture and initiatives.
• Innovation and Best Practices: Keep abreast of the latest cybersecurity trends and technologies. Implement forward-thinking tools and practices to enhance the bank’s security landscape.
• Developing and maintaining a roadmap for the CCM product to ensure currency and security of the CCM tool is adhered to VM standards.
• Leading the delivery of the roadmap, building the solution designs to deliver a robust service while engaging with Stakeholders throughout to deliver threat led insights.
• Lead supplier engagements to ensure service delivery of the CCM tool is monitored to agreed levels.

We need you to have

• Proven strong analytical, problem solving and IT system skills.
• Minimum of 5 years of experience in cybersecurity, with a strong background in security domains, governance, risk and compliance.
• Awareness of emerging cyber security trends, threats, and technologies.
• Proven experience as a Product Owner or similar leadership role in cybersecurity.

It’s a bonus if you have but not essential

• Knowledge of security technologies, tools, and solutions used in cybersecurity programs.
• Understanding of regulatory requirements and industry standards relevant to cyber security in Financial Services.
• Professional certifications such as CISSP, CISM, or similar are highly desirable.

Red Hot Rewards

• Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more.
• Up to five extra paid well-being days per year.
• 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt.
• Market-leading pension.
• Free private medical cover, income protection and life assurance.
• Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness. And there’s no waiting around, you’ll enjoy these benefits from day one.

Feeling insatiably curious about this role? If we’re lucky to receive a lot of interest, we may close the advert early and would hate you to miss out.

We’re all about helping you Live a Life More Virgin, so happy to talk flexible working with you.

Say hello to Virgin Money

We’re making great strides towards achieving our ambition of becoming the UK’s best digital bank. As a full-service digital bank with a heritage stretching back over 180 years, we’re a workforce to be reckoned with. We’re putting the full power of our experience behind disruptive ideas that reinvent the role a bank plays in people’s lives. We’re customer obsessed and work tirelessly to create positive experiences for our millions of customers and deliver on our purpose, Making You Happier About Money. Our customer centric culture means that we’re able to do banking differently and by innovating and working together we can make a real difference. Join us and Live a Life More Virgin that empowers you with choice and flexibility in how you work.

Be yourself at Virgin Money

Our purpose is to make people happier about money, this means seeing and feeling the world as our customers do by creating a workforce that reflects the rich diversity of our customers and communities. We’re committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we’re committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team careers@virginmoney.com

Now the legal bit

Living A Life More Virgin allows our colleagues to be based anywhere in the UK (if the role allows it), but we’ll need you to confirm you have the right to work in the UK. If you’re successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years’ worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks – we’ll ask for six years of regulatory references, and once in the role, you’ll be subject to periodic employment checks.