Cyber Operations Director in London

Responsibilities

• Lead and evolve the enterprise Cyber Threat Intelligence (CTI) program, delivering strategic, operational, and tactical intelligence to proactively identify, assess, and mitigate threats targeting the organisation and the broader financial services sector.
• Direct and develop a global team of threat intelligence analysts, setting priorities, allocating resources, and leveraging advanced technologies, including AI and LLM capabilities, to maximize intelligence collection, effectiveness and operational efficiency.
• Oversee threat research and analysis, including threat actor profiling, indicators of compromise (IOCs), tactics, techniques and procedures (TTPs), and emerging threat trends, to support threat hunting, detection engineering, vulnerability management, and incident response activities.
• Partner with CSOC, Incident Response, CISO functions and broader Intelligence functions to provide actionable intelligence during cyber incidents, enhance defensive controls, and improve organisational cyber resilience.
• Maintain operational intelligence-sharing relationships with FS-ISAC, industry peers, government agencies, and trusted external partners to strengthen situational awareness; intelligence collection capabilities and supporting broader external Cyber engagement and partnerships.
• Translate complex intelligence assessments into executive-level briefings, strategic risk insights, and actionable recommendations for senior leadership, business stakeholders, and board-level audiences.
• Mature and implement threat intelligence operating model, frameworks, processes, and intelligence requirements, ensuring alignment with business objectives, risk management priorities, and the evolving threat landscape.

Skills

• Deep expertise in Cyber Threat Intelligence, cybersecurity operations, incident response, and risk management, with extensive knowledge of threat actor methodologies, MITRE ATT&CK, cyber kill chain frameworks, and threats relevant to the financial services sector.
• Proven leadership experience building, scaling, and managing enterprise threat intelligence functions within large, complex organisations, including people leadership, capability development, performance management, and strategic resource allocation.
• Demonstrated success designing and enhancing threat intelligence programs, platforms, and processes, including the deployment and optimisation of Threat Intelligence Platforms (TIPs), OSINT capabilities, intelligence automation, and integration with security operations.
• Strong technical background in threat intelligence analysis, threat actor tracking, campaign analysis, security research, threat hunting, detection engineering, and the development of scalable cybersecurity solutions supporting detection, response, and vulnerability management.
• Experience leveraging and integrating security technologies, including SIEM and SOAR platforms (e.g., Splunk), to operationalise intelligence, automate workflows, and improve the effectiveness of security controls and incident response capabilities.
• Exceptional communication, presentation, and stakeholder management skills, with a proven ability to translate complex cyber threats into actionable business insights and deliver intelligence briefings to executive leadership, board members, and non-technical audiences.
• Proven track record within financial services, banking, or other highly regulated environments, combining strong critical thinking, project management, and strategic planning capabilities to align threat intelligence initiatives with business objectives and risk priorities.

Purpose of the role

To monitor the performance of operational controls, implement and manage security controls and consider lessons learnt in order to protect the bank from potential cyber-attacks and respond to threats.

Accountabilities

• Management of security monitoring systems, including intrusive prevention and detection systems, to alert, detect and block potential cyber security incidents, and provide a prompt response to restore normal operations with minimised system damage.
• Identification of emerging cyber security threats, attack techniques and technologies to detect/prevent incidents, and collaborate with networks and conferences to gain industry knowledge and expertise.
• Management and analysis of security information and event management systems to collect, correlate and analyse security logs, events and alerts/potential threats.
• Triage of data loss prevention alerts to identify and prevent sensitive data from being exfiltrated from the bank's network.
• Management of cyber security incidents including remediation & driving to closure.

Director Expectations

• To manage a business function, providing significant input to function wide strategic initiatives.
• Contribute to and influence policy and procedures for the function and plan, manage and consult on multiple complex and critical strategic projects, which may be business wide.
• Manage the direction of a large team or sub-function, leading other people managers and embedding a performance culture aligned to the values of the business.
• Provide expert advice to senior functional management and committees to influence decisions made outside of own function, offering significant input to function wide strategic initiatives.
• Manage, coordinate and enable resourcing, budgeting and policy creation for a significant sub-function.
• Escalate breaches of policies/procedure appropriately.
• Foster and guide compliance, ensure regulations are observed that relevant processes in place to facilitate adherence.
• Focus on the external environment, regulators, or advocacy groups to both monitor and influence on behalf of Barclays, when appropriate.
• Demonstrate extensive knowledge of how the function integrates with the business division / Group to achieve the overall business objectives.
• Maintain broad and comprehensive knowledge of industry theories and practices within own discipline alongside up-to-date relevant sector/functional knowledge, and insight into external market developments/initiatives.
• Use interpretative thinking and advanced analytical skills to solve problems and design solutions in often complex/sensitive situations.
• Exercise management authority to make significant decisions and certain strategic decisions or recommendations within own area.
• Negotiate with and influence stakeholders at a senior level both internally and externally.
• Act as principal contact point for key clients and counterparts in other functions/business divisions.
• Mandated as a spokesperson for the function and business division.