Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cyber security initiatives and embed a positive security culture across the business.
- Company: Join Capital One, a pioneering tech company transforming banking with innovation and simplicity.
- Benefits: Enjoy a collaborative work environment, opportunities for growth, and a commitment to diversity.
- Why this job: Be part of a mission-driven team that values creativity and teamwork in securing customer data.
- Qualifications: Experience in cyber risk management, knowledge of ISO standards, and relevant security certifications required.
- Other info: Flexible working options available; we support your career development and well-being.
The predicted salary is between 48000 - 72000 £ per year.
Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire
Cyber Security Manager – ISO
Cyber security is an integral part of our culture, and as an industry leader within financial services, it is vital that we all play our part in keeping customers’ data secure. We see security as an enabler and differentiator to enable business innovation and growth, rather than a step in a compliance process.
This role sits in our UK ISO (Information Security Office) team, and will work to embed a positive security culture and to ensure that security risks are properly understood and managed. Working both internally across UK Cyber, and with the wider business, this position will play a key role in solving business problems within cyber guard rails and building pragmatic security controls into our day to day operational processes.
You will also work with technical subject matter experts within our Advisory ISO team to ensure that we communicate technical information in accessible terms for business audiences, including senior management. This is a key part of our drive to communicate a consistent data-driven, risk-based set of priorities and updates.
What you will do:
- Engage with business functions, projects and activities to ensure that key business processes deliver security balanced with ease of use – making the secure way the easy way to operate.
- Provide a forward-looking view to Cyber of business activities which affect current understanding of cyber risk, and update business functions on relevant Cyber projects.
- Provide cyber consultancy to business stakeholders and UK Cyber teams.
- Support work to increase awareness of cyber risk across key business stakeholders.
- Review existing processes to identify cyber risks, and propose any required mitigating work.
- Assess compliance with Cyber policies and standards.
- Work with Advisory ISO colleagues to ensure that we present consistent, compelling narratives on risks associated with cyber vulnerabilities.
What we are looking for
- Practical experience of working in or leading components of a structured security programme, working with business teams to identify and manage cyber risk.
- Demonstrable experience in cyber risk analysis, assessment and mitigation.
- Experience in a financial or highly regulated environment.
- A detailed understanding of ISO 27001, ITIL, COBIT, PCI DSS and NIST Cyber Security Frameworks.
- Working knowledge of GDPR.
- Relevant security certifications such as CISSP, CISM, CISA, CRISC, ISEB Certificate in Information Security Management Principles.
- Effective written and verbal communication skills.
Capital One is committed to diversity in the workplace. If you require a reasonable adjustment, please contact ukrecruitment@capitalone.com. All information will be kept confidential and will only be used for the purpose of applying a reasonable adjustment.
For technical support or questions about Capital One\’s recruiting process, please send an email to Careers@capitalone.com.
Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.
Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe, and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Who We Are
At Capital One, we\’re building a leading information-based technology company. Still founder-led by Chairman and CEO Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking.
Guided by our shared values, we thrive in an environment where collaboration and openness are valued. We believe that innovation is powered by perspective and that teamwork and respect for each other lead to superior results. We elevate each other and obsess about doing the right thing. Our associates serve with humility and a deep respect for their responsibility in helping our customers achieve their goals and realize their dreams. Together, we are on a quest to change banking for good.
#J-18808-Ljbffr
Cyber Security Manager - ISO employer: Capital One (Europe) plc
Contact Detail:
Capital One (Europe) plc Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Manager - ISO
✨Tip Number 1
Familiarise yourself with the specific frameworks mentioned in the job description, such as ISO 27001 and NIST Cyber Security Frameworks. Being able to discuss these frameworks in detail during your interview will demonstrate your expertise and understanding of the role.
✨Tip Number 2
Network with professionals in the cyber security field, especially those who have experience in financial services. Engaging with industry peers can provide insights into the company culture and expectations, which can be invaluable during your application process.
✨Tip Number 3
Prepare to showcase your experience in leading structured security programmes. Think of specific examples where you successfully identified and mitigated cyber risks, as this will help you stand out as a candidate who can contribute effectively to the team.
✨Tip Number 4
Brush up on your communication skills, particularly how to convey complex technical information to non-technical stakeholders. Practising this skill will help you articulate your ideas clearly during interviews, making it easier for the hiring team to see your fit for the role.
We think you need these skills to ace Cyber Security Manager - ISO
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cyber security, particularly in structured security programmes and risk management. Use keywords from the job description, such as ISO 27001, GDPR, and cyber risk analysis, to demonstrate your fit for the role.
Craft a Compelling Cover Letter: In your cover letter, explain why you are passionate about cyber security and how your background aligns with the company's mission. Mention specific experiences that showcase your ability to communicate technical information effectively to business audiences.
Showcase Relevant Certifications: List any relevant security certifications like CISSP, CISM, or CISA prominently in your application. This will help establish your credibility and expertise in the field, which is crucial for this role.
Highlight Communication Skills: Since effective communication is key for this position, provide examples of how you've successfully communicated complex cyber security concepts to non-technical stakeholders. This could be through presentations, reports, or collaborative projects.
How to prepare for a job interview at Capital One (Europe) plc
✨Understand Cyber Security Frameworks
Make sure you have a solid grasp of ISO 27001, ITIL, COBIT, PCI DSS, and NIST Cyber Security Frameworks. Be prepared to discuss how these frameworks apply to the role and how you've used them in past experiences.
✨Communicate Clearly
Since you'll be working with both technical experts and business stakeholders, practice explaining complex cyber security concepts in simple terms. This will demonstrate your ability to bridge the gap between technical and non-technical audiences.
✨Showcase Your Risk Management Skills
Be ready to provide examples of how you've identified, assessed, and mitigated cyber risks in previous roles. Highlight any specific projects where you successfully balanced security with operational efficiency.
✨Prepare for Scenario-Based Questions
Expect questions that present hypothetical situations related to cyber security challenges. Think through your problem-solving approach and how you would engage with various business functions to address these issues effectively.
