At a Glance
- Tasks: Lead cybersecurity initiatives and enhance IT Risk & Security procedures in a dynamic banking environment.
- Company: A top global investment bank with a focus on innovation and security.
- Benefits: Competitive salary, guaranteed promotion, hybrid work model, and professional growth opportunities.
- Other info: Exciting contract-to-permanent role with opportunities to manage complex projects.
- Why this job: Join a leading bank and make a real impact on cybersecurity in the financial sector.
- Qualifications: Proven experience in IT risk and security, strong analytical and communication skills.
The predicted salary is between 50000 - 70000 £ per year.
A leading global investment bank is seeking an experienced Secure-by-Design SME to support and enhance its IT Risk, Security & Control procedures. This will be a contract-to-permanent engagement, with an initial 6 month contact, and guaranteed promotion within that period. Location: London, City - hybrid 3 days.
Key Responsibilities:
- Conduct cybersecurity controls testing across banking and securities businesses, aligned with major industry frameworks (SOX, ISO 27001, NIST, FFIEC, PCI-DSS), including dual-hat responsibilities.
- Engage business and technology stakeholders to assess control design and operating effectiveness, through interviews, documentation review, and evidence evaluation.
- Develop risk and control matrices, testing strategies, and informed conclusions on control gaps, with clear documentation of risks, findings, and remediation actions.
- Provide security assurance across a broad range of IT security domains (e.g. IAM, governance, incident management, vulnerability management, threat intelligence).
- Manage multiple complex workstreams under ambiguity and tight deadlines, while producing high-quality reports and presentations for senior stakeholders.
- Act as a cybersecurity leader and trusted advisor, combining strong analytical skills, clear communication, and a results-driven, detail-oriented approach.
Secure-by-Design VP, IT Risk & Security — Hybrid London employer: Bonhill Partners
As a leading global investment bank, we pride ourselves on fostering a dynamic and inclusive work culture that prioritises employee growth and development. Our London office offers a hybrid working model, allowing for flexibility while engaging in meaningful projects that shape the future of IT risk and security. With guaranteed promotion within the initial contract period, employees are empowered to excel in their roles and contribute to a collaborative environment that values innovation and excellence.
StudySmarter Expert Advice🤫
We think this is how you could land Secure-by-Design VP, IT Risk & Security — Hybrid London
✨Tip Number 1
Network like a pro! Reach out to your connections in the cybersecurity field and let them know you're on the hunt for a Secure-by-Design role. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for those interviews by brushing up on your knowledge of industry frameworks like SOX, ISO 27001, and NIST. Be ready to discuss how you've engaged with stakeholders and assessed control designs in your previous roles—real-life examples will make you stand out!
✨Tip Number 3
Showcase your analytical skills and attention to detail in your discussions. When talking about your experience, highlight specific instances where you identified control gaps and implemented remediation actions. This will demonstrate your capability as a trusted advisor in IT risk and security.
✨Tip Number 4
Don't forget to apply through our website! We’ve got loads of resources to help you land that contract-to-permanent gig. Plus, it’s a great way to ensure your application gets seen by the right people.
We think you need these skills to ace Secure-by-Design VP, IT Risk & Security — Hybrid London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Secure-by-Design role. Highlight your experience with cybersecurity controls and frameworks like SOX, ISO 27001, and NIST. We want to see how your skills align with what we’re looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re the perfect fit for this role. Share specific examples of how you've engaged stakeholders and assessed control effectiveness in past roles. Let us know what makes you tick!
Showcase Your Leadership Skills:As a cybersecurity leader, it’s important to demonstrate your ability to manage complex workstreams. In your application, mention any experiences where you’ve led teams or projects under tight deadlines. We love seeing results-driven candidates!
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re serious about joining our team at StudySmarter!
How to prepare for a job interview at Bonhill Partners
✨Know Your Frameworks
Make sure you’re well-versed in the major industry frameworks mentioned in the job description, like SOX, ISO 27001, and NIST. Brush up on how these frameworks apply to IT risk and security, as you’ll likely be asked to discuss your experience with them during the interview.
✨Prepare for Scenario Questions
Expect to face scenario-based questions that assess your ability to engage with stakeholders and evaluate control effectiveness. Think of specific examples from your past experiences where you’ve successfully identified control gaps or implemented security measures, and be ready to share those stories.
✨Showcase Your Leadership Skills
As a cybersecurity leader, it’s crucial to demonstrate your leadership capabilities. Prepare to discuss how you’ve managed complex workstreams and led teams under pressure. Highlight any instances where you acted as a trusted advisor to senior stakeholders, showcasing your communication and analytical skills.
✨Bring Your A-Game for Reporting
Since producing high-quality reports is part of the role, be prepared to talk about your experience in creating detailed documentation and presentations. Consider bringing samples of your previous work (if possible) to illustrate your attention to detail and results-driven approach.
