Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security initiatives, conduct risk assessments, and support project teams in embedding security best practices.
- Company: Crown Agents Bank connects emerging markets to global financial infrastructure, transforming payments and FX technology.
- Benefits: Enjoy a contributory pension plan, life assurance, private medical insurance, and flexible working options.
- Why this job: Join a dynamic team making a real impact in financial security across challenging markets.
- Qualifications: Bachelor's degree in Computer Science, CISSP certification, and 8 years of experience in information security required.
- Other info: Ideal for hands-on individuals who thrive in fast-paced environments and want to shape security strategies.
The predicted salary is between 43200 - 72000 Β£ per year.
Crown Agents Bank is a vastly growing and regulated UK bank that connects emerging and frontier markets to the rest of the world, using FX and payments technology. We are transforming the way payments and FX move through emerging markets, reducing friction so that more money gets to those who need it. Emerging markets payments are usually challenging, expensive, unreliable and opaque. Our solutions help fix these pain points. Ultimately, we connect traditionally hard-to-reach regions to global financial infrastructure, giving access to the best prices and the fastest, most reliable settlement.
FX and cross-border payments are often complex and expensive, especially when operating in emerging markets. Crown Agents Bank (CAB) wraps its deep and trusted relationships and strength of network around innovative digital capabilities, and cross-border transaction banking solutions to enable fintech, corporates, governments, development organisations and banks to move money to, from, and across often hard-to-reach markets.
Job Description
The Information Security Manager will play a crucial role in protecting the confidentiality, integrity, and availability of our systems and data. Youβll work across the business to support secure delivery of projects, conduct thorough risk assessments, oversee third-party security engagements, and contribute to shaping our evolving security posture.
This is a hands-on role ideal for someone who enjoys both strategic thinking and rolling up their sleeves to get things done.
Responsibilities:
- Advise and support project teams to embed security best practices throughout the project lifecycle.
- Scope, manage, and track remediation of penetration testing and vulnerability assessments.
- Maintain application security processes, standards and guidelines. Translate application security policies into security requirements.
- Conduct and document security risk assessments on changes, threats, vulnerabilities, and new initiatives.
- Perform third-party vendor risk assessments and ongoing security reviews.
- Assist in identifying and assessing new security technologies and vendors.
- Lead or support the response to security incidents, including investigation, containment, root cause analysis, and reporting. Work with internal teams to continuously improve incident response processes.
- Support compliance and alignment with ISO 27001, Cyber Essentials, SWIFT, NIST and other relevant frameworks.
- Communicate effectively with various stakeholders including engineers, product managers, operations team, senior management, and auditors about the information security posture, risks, and mitigation strategies.
Qualifications
- Bachelor\’s degree or higher in Computer Science or equivalent.
- CISSP certification required; additional certifications (e.g. CEH, OSCP, AWS Security) are a plus.
Experience:
- Minimum of 8 yearsβ experience in information security roles, ideally in the financial sector.
- Experience working with ISO 27001, Cyber Essentials, and preferably NIST CSF, SOC 2, or SWIFT frameworks.
- Strong understanding of security in the context of software development and application security (OWASP, SDLC, DevSecOps).
- Hands-on, pragmatic approach with the ability to operate in a lean, fast-paced environment.
- Excellent communication skills, with the ability to engage both technical and non-technical stakeholders.
- Innovative mindset with a passion for staying current in the ever-evolving cyber landscape.
- Experience working in or with regulated financial institutions is desirable.
Additional Information
- Contributory personal pension plan: – Minimum: Employee 2% and Employer 7%. Employer matches contributions in 1% increments to a maximum of: Employee 5% and Employer 10%
- Life Assurance β 4 times annual salary
- Group Income Protection
- Private Medical Insurance β this may include cover for partner and or children at company cost. Cover includes Optical, Dental and Audiology
#J-18808-Ljbffr
Information Security Manager employer: Crown Agents Bank Ltd.
Contact Detail:
Crown Agents Bank Ltd. Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Information Security Manager
β¨Tip Number 1
Familiarise yourself with the specific security frameworks mentioned in the job description, such as ISO 27001 and Cyber Essentials. Being able to discuss these frameworks in detail during your interview will demonstrate your expertise and alignment with the company's needs.
β¨Tip Number 2
Network with professionals in the information security field, especially those who have experience in the financial sector. Engaging with industry peers can provide insights into the role and may even lead to referrals or recommendations.
β¨Tip Number 3
Stay updated on the latest trends and technologies in cybersecurity. Being knowledgeable about current threats and solutions will not only help you in interviews but also show your passion for the field and commitment to continuous learning.
β¨Tip Number 4
Prepare to discuss real-world scenarios where you've successfully managed security incidents or implemented security best practices. Concrete examples will illustrate your hands-on experience and problem-solving skills, which are crucial for this role.
We think you need these skills to ace Information Security Manager
Some tips for your application π«‘
Understand the Role: Before applying, make sure to thoroughly understand the responsibilities and qualifications required for the Information Security Manager position at Crown Agents Bank. This will help you tailor your application to highlight relevant experience.
Tailor Your CV: Customise your CV to reflect your experience in information security, particularly in the financial sector. Emphasise your familiarity with ISO 27001, Cyber Essentials, and any other relevant frameworks mentioned in the job description.
Craft a Compelling Cover Letter: Write a cover letter that not only outlines your qualifications but also demonstrates your passion for information security and your understanding of the challenges faced by emerging markets. Mention specific examples of how you've successfully managed security projects in the past.
Highlight Relevant Certifications: Make sure to prominently display your CISSP certification and any additional certifications like CEH or OSCP in your application. These credentials are crucial for this role and should be easily visible to the hiring team.
How to prepare for a job interview at Crown Agents Bank Ltd.
β¨Understand the Company and Its Mission
Before your interview, take some time to research Crown Agents Bank and its role in connecting emerging markets. Familiarise yourself with their payment solutions and how they address challenges in these regions. This knowledge will help you demonstrate your genuine interest in the company and align your answers with their mission.
β¨Showcase Your Technical Expertise
As an Information Security Manager, you'll need to highlight your experience with security frameworks like ISO 27001 and Cyber Essentials. Be prepared to discuss specific projects where you've implemented security best practices or conducted risk assessments. Use concrete examples to illustrate your hands-on approach and problem-solving skills.
β¨Communicate Effectively with Stakeholders
Given the need to engage both technical and non-technical stakeholders, practice explaining complex security concepts in simple terms. Think of examples where you've successfully communicated risks and mitigation strategies to diverse teams. This will showcase your ability to bridge the gap between technical and business perspectives.
β¨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your response to security incidents or your approach to third-party vendor risk assessments. Prepare by thinking through past experiences where you had to investigate or contain a security issue. Highlight your analytical skills and your ability to lead teams through challenging situations.
