Information Security Officer

Information Security Officer

Full-Time 60000 - 75000 £ / year (est.) No working from home possible
J

At a Glance

  • Tasks: Ensure the bank's information security policies are robust and effective while promoting awareness.
  • Company: Join a leading financial institution focused on secure growth and compliance.
  • Benefits: Competitive salary, professional development, and opportunities for career advancement.
  • Other info: Collaborative environment with direct access to the Executive Team and Board.
  • Why this job: Be a key player in shaping the bank's security landscape and making a real impact.
  • Qualifications: 5+ years in information security with knowledge of UK regulations and security frameworks.

The predicted salary is between 60000 - 75000 £ per year.

Overview Sitting in our 2nd Line Function, the Information Security Officer (ISO) plays a pivotal role in helping the bank achieve its growth ambitions in a compliant and secure manner.

Working with the Chief Risk Officer and Data Protection Officer, the role holder will ensure the bank has robust and proportionate policies, standards and control frameworks in place.

Working with 1st Line colleagues from across the bank, particularly those responsible for Information Security, IT, Operational Resilience and the management, storage and use of data, will provide independent assurance of the efficacy of the control environment and support the delivery of projects and transformational change.

A trusted expert and critical friend, the individual will be responsible for working directly with the bank’s Executive Team and Board to ensure they have a transparent understanding of the bank’s risk posture and responsible for increasing Information Security awareness, skills and understanding across the bank.

Responsibilities Provide independent assurance of the control environment by working with 1st Line colleagues across Information Security, IT, Operational Resilience and the management, storage and use of data.

Support the delivery of projects and transformational change while promoting information security awareness across the bank.

Collaborate with the Executive Team and Board to communicate risk posture and information security considerations clearly.

Requirements A minimum of 5 years’ experience in a second line information security, GRC or data protection role within a UK regulated financial services firm.

Working knowledge of PRA and FCA expectations, UK GDPR, PECR and operational resilience requirements.

Experience running security awareness programmes, including phishing simulations and e-learning platforms.

Working knowledge of Microsoft Purview 9DLP (Insider Risk management, Communication Compliance) and the wider Microsoft E5 security stack.

Experience responding to internal and external audits and drafting Board and committee papers.

Experience of third-party security due diligence and supplier risk assessments.

Relevant certifications such as CISSP, CISM, CRISC, CIPP/E or ISO 27001 Lead Auditor (desirable). #J-18808-Ljbffr

J

Contact Details:

Jobtailor Recruitment Team

We think you need these skills to ace Information Security Officer

Information Security
Governance, Risk and Compliance (GRC)
Data Protection
PRA and FCA Regulations
UK GDPR
PECR
Operational Resilience