The following job is no longer available:
Head of Information, Cyber & Physical Security Risk Specialist
Head of Information, Cyber & Physical Security Risk Specialist
Head of Information, Cyber & Physical Security Risk Specialist
Posted 23 days ago
- Birmingham, West Midlands
- Any
- External
- Expired - 2 months ago
Head of Information, Cyber & Physical Security Risk Specialist page is loaded
Head of Information, Cyber & Physical Security Risk Specialist Apply
locations
Birmingham
Manchester
Chester
Edinburgh
Bristol
time type
Full time
posted on
Posted Yesterday
job requisition id
110812
End DateWednesday 01 May 2024Salary Range£0 - £0 We support flexible working – click here for more information on flexible working options
Flexible Working OptionsHybrid Working, Job ShareJob Description SummaryJOB TITLE:Head of Information, Cyber & Physical Security Risk SpecialistLOCATION(S): Birmingham, Bristol, Edinburgh, Leeds, Halifax, Chester & Manchester HOURS: Full time WORKING PATTERN:Our work style is hybrid, which involves spending two days per week, or 40% of our time at one of our hubs. Who are we looking for? We’re on an exciting journey and there couldn’t be a better time to join us. We’re putting in place a fresh operating model for non-financial risk management across the Group, empowering our people to take end-to-end accountability for managing the risks that they face!We're looking for a Head of Information, Cyber & Physical Security Risk Specialist who'll lead and develop its risk specialist centre of excellence, to support robust risk management in alignment with the Group’s Enterprise Risk Management Framework (ERMF). This will include giving our senior leaders and Risk Owners of the Group businesses advice on their risk decisions, safely, and at pace.You will be part of management’s security leadership team. To assure our Group’s strategic transformation on this scale we need you to have a breadth and depth of knowledge in current tech, and we want you to be passionate about its application and how we manage its risk; prepare to disrupt the norm in the pursuit of the best possible customer and staff experience.You should have people at your heart; we strive for excellent customer experience but to achieve this we focus on our people – building a culture around continued learning and support so everyone can feel bold to share new ideas and solutions.You'll have deep operational risk knowledge and provide thought leadership, insight and oversight that supports the implementation of the second line of defence and executes its roles and responsibilities. You'll lead our approach to implementing risk policy, appetite, and control objectives to enable the delivery of customer, regulatory and business strategic outcomes.Job Description What will you be doing?Leads a diverse team of risk specialists, coaching and inspiring them to drive optimal risk outcomes for our customers, in collaboration with a wider team of risk and control expertsOwns an effective policy and suite of control objectives to manage this risk type effectively across the Group. Owns the policy with complete traceability back to legal and regulatory requirements.Manages relationships with risk and control owners acting as primary Operational Risk specialist business partner, utilising their team to help deliver against customer, business and strategic outcomes.Takes responsibility for design and implementation of risk policies and appetite to enable the Group to meet regulatory and operational risk objectives, providing consistent, fair outcomes for customers.Leads continuous review and enhancement of risk policies & appetite through the identification & assessment of emerging & growing risks, ensure policies and appetite reflect new opportunities or threats.Establishes continuous monitoring and reporting of the Group’s exposure relative to risk appetite, highlighting any significant deviations. Identifies and develops key risk indicators and key performance indicators to enable appropriate monitoring.Develops effective, ongoing data-led Operational Risk control objectives to meet the needs or risk and control owners, control specialist teams, Audit and external regulators.Supports control owners and specialists to implement control measures that are designed to achieve the control objectives, including advising on optimal implementations where appropriate. Regularly monitors and validates the effectiveness of the design of control measures to ensure they are achieving the control objectives.Leads the development and implementation of a risk and control oversight plan to assess compliance to relevant laws, regulations, industry standards and established controls.Interprets new operational risk regulation and emerging technology opportunities and threats accurately and adeptly. Forethinking the direction of travel and anticipating the impact of the proposed changes on the Group.Drives automation of risk and control measurement, monitoring, and reporting, in coordination with technology, data, and analytics teams, raising and defining action plans in pursuit of sustainable risk management.Innovates, ensuring we're future fit: build scenarios for different approaches to risk management and strategies for controls that tackle emerging and horizon risks, with clear options and recommendations.Provides pragmatic advice to support informed key risk decisions and trade-offs (balancing commerciality and risk appetite), being bold to ‘call it’, and influence senior decision makers.What will you need to bring?Detailed knowledge of the key security risks facing a financial services group, with a proven ability to assess and manage security risk and threats (e.g. using ISMS, MITRE ATT&CK, PASTA/STRIDE/DREAD frameworks and methodologies), set policy and manage compliance, design controls, provide assurance oversight and challenge, and offer advice balancing risk and reward.Experienced in the domains of information, cyber and physical security, with applied knowledge across key elements including identity and access management, data security, threat and vulnerability management, security architecture and design, security engineering and application development (inc. devsecops), cloud services and shared responsibility models (inc. native and microservices architecture), infrastructure security, people security, cryptography, security operations, and physical and environmental security. Demonstrable curiosity and understanding of the emerging technologies shaping the risk landscape (inc. AI, Digital Ledger Technology, Quantum).Considered a deep subject matter expert with a strong depth of understanding of the latest Operational Risk frameworks and technology being used across financial and non-financial services to enable them to lead a specialist risk centre of excellence.Experience of developing and owning group-level policy and setting risk-appetite, with expertise in continuous monitoring and reporting on group exposure. Able to set control objectives and set performance indicators.Demonstrates good and timely decision making that keeps the organisation moving forward and skilfully balances difficult trade-offs with the ability to understand business strategy and opportunity risks. Has examples where they have assimilated different sources of data and complex information to effectively problem solve and make relevant conclusions and recommendations.Demonstrates ability to interpret new operational risk regulation, emerging risks and technology innovations with forethinking to anticipate the impact of changes on the Group and act accordingly.Has acted as a Risk Specialist business partner, using strong communication skills to build partnerships and work collaboratively with others, including Risk Owner, Control Owner and Control Office to meet shared objectives.Able to work effectively with all other lines of defence and understands the different but complimentary roles. Seen as the primary Operational Risk specialist and expert across the Group to help deliver against aligned customer, business and strategic outcomes.Has examples of building effective, ongoing data-led Operational Risk control objectives working with others, including external regulators.Inspires others by gaining followership and commitment to future action through personal integrity and collaboration; demonstrating an inclusive approach. Coaches to go faster by demonstrating commitment to create an environment that builds teams with skills aligned to our Group Strategy and Purpose creating new and better ways for the organisation to change at pace.What’s in it for you?You'll have both opportunity and profile - we'll provide you with a diverse, energising and lively environment that focuses on equal opportunity and real career progression in a leading digital organisation. We'll take your personal and professional development very seriously and enable you to make a genuine difference to millions throughout your career with us.We also offer a wide-ranging benefits package, which includes:A generous pension contribution of up to 15%An annual performance-related bonusShare schemes including free sharesBenefits you can adapt to your lifestyle, such as discounted shopping30 days’ holiday, with bank holidays on topA range of wellbeing initiatives and generous parental leave policiesOur focus is to ensure we're inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative. And it’s why we especially welcome applications from under-represented groups.We’re disability confident. So if you’d like reasonable adjustments to be made to our recruitment processes, just let us know.So if you have a desire to work in an ambitious role in a dynamic environment, whilst gaining skills and experience within a friendly and motivated team then get in touch, we'd love to hear from you.
At Lloyds Banking Group, we're driven by a clear purpose; to help Britain prosper. Across the Group, our colleagues are focused on making a difference to customers, businesses and communities. With us you'll have a key role to play in shaping the financial services of the future, whilst the scale and reach of our Group means you'll have many opportunities to learn, grow and develop. We keep your data safe. So, we'll only ever ask you to provide confidential or sensitive information once you have formally been invited along to an interview or accepted a verbal offer to join us which is when we run our background checks. We'll always explain what we need and why, with any request coming from a trusted Lloyds Banking Group person.
We're focused on creating a values-led culture and are committed to building a workforce which reflects the diversity of the customers and communities we serve. Together we’re building a truly inclusive workplace where all of our colleagues have the opportunity to make a real difference.
Similar Jobs (5)
Head of Internal & External Supplier Risk, CCOR
locations
8 Locations
time type
Full time
posted on
Posted Yesterday
Assistant Manager - Security, Business Continuity & Supplier Control Specialist
locations
4 Locations
time type
Full time
posted on
Posted 10 Days Ago
Head of MCOBS Compliance, CCOR
locations
8 Locations
time type
Full time
posted on
Posted Yesterday
For over 320 years we’ve been making a difference to the lives of customers, businesses and communities. With us, you’ll be helping Britain prosper.You’ll be part of an ever-changing industry, playing a key role in shaping the financial services of the future whilst supporting our customers’ changing needs. For more Flexible Working Options please use the free text search, e.g. job sharing, variable hours, to identify relevant matches. Our CultureWhat Do Our Colleagues Think It's Like To Work Here?
#J-18808-Ljbffr
Head of Information, Cyber & Physical Security Risk Specialist Apply
locations
Birmingham
Manchester
Chester
Edinburgh
Bristol
time type
Full time
posted on
Posted Yesterday
job requisition id
110812
End DateWednesday 01 May 2024Salary Range£0 - £0 We support flexible working – click here for more information on flexible working options
Flexible Working OptionsHybrid Working, Job ShareJob Description SummaryJOB TITLE:Head of Information, Cyber & Physical Security Risk SpecialistLOCATION(S): Birmingham, Bristol, Edinburgh, Leeds, Halifax, Chester & Manchester HOURS: Full time WORKING PATTERN:Our work style is hybrid, which involves spending two days per week, or 40% of our time at one of our hubs. Who are we looking for? We’re on an exciting journey and there couldn’t be a better time to join us. We’re putting in place a fresh operating model for non-financial risk management across the Group, empowering our people to take end-to-end accountability for managing the risks that they face!We're looking for a Head of Information, Cyber & Physical Security Risk Specialist who'll lead and develop its risk specialist centre of excellence, to support robust risk management in alignment with the Group’s Enterprise Risk Management Framework (ERMF). This will include giving our senior leaders and Risk Owners of the Group businesses advice on their risk decisions, safely, and at pace.You will be part of management’s security leadership team. To assure our Group’s strategic transformation on this scale we need you to have a breadth and depth of knowledge in current tech, and we want you to be passionate about its application and how we manage its risk; prepare to disrupt the norm in the pursuit of the best possible customer and staff experience.You should have people at your heart; we strive for excellent customer experience but to achieve this we focus on our people – building a culture around continued learning and support so everyone can feel bold to share new ideas and solutions.You'll have deep operational risk knowledge and provide thought leadership, insight and oversight that supports the implementation of the second line of defence and executes its roles and responsibilities. You'll lead our approach to implementing risk policy, appetite, and control objectives to enable the delivery of customer, regulatory and business strategic outcomes.Job Description What will you be doing?Leads a diverse team of risk specialists, coaching and inspiring them to drive optimal risk outcomes for our customers, in collaboration with a wider team of risk and control expertsOwns an effective policy and suite of control objectives to manage this risk type effectively across the Group. Owns the policy with complete traceability back to legal and regulatory requirements.Manages relationships with risk and control owners acting as primary Operational Risk specialist business partner, utilising their team to help deliver against customer, business and strategic outcomes.Takes responsibility for design and implementation of risk policies and appetite to enable the Group to meet regulatory and operational risk objectives, providing consistent, fair outcomes for customers.Leads continuous review and enhancement of risk policies & appetite through the identification & assessment of emerging & growing risks, ensure policies and appetite reflect new opportunities or threats.Establishes continuous monitoring and reporting of the Group’s exposure relative to risk appetite, highlighting any significant deviations. Identifies and develops key risk indicators and key performance indicators to enable appropriate monitoring.Develops effective, ongoing data-led Operational Risk control objectives to meet the needs or risk and control owners, control specialist teams, Audit and external regulators.Supports control owners and specialists to implement control measures that are designed to achieve the control objectives, including advising on optimal implementations where appropriate. Regularly monitors and validates the effectiveness of the design of control measures to ensure they are achieving the control objectives.Leads the development and implementation of a risk and control oversight plan to assess compliance to relevant laws, regulations, industry standards and established controls.Interprets new operational risk regulation and emerging technology opportunities and threats accurately and adeptly. Forethinking the direction of travel and anticipating the impact of the proposed changes on the Group.Drives automation of risk and control measurement, monitoring, and reporting, in coordination with technology, data, and analytics teams, raising and defining action plans in pursuit of sustainable risk management.Innovates, ensuring we're future fit: build scenarios for different approaches to risk management and strategies for controls that tackle emerging and horizon risks, with clear options and recommendations.Provides pragmatic advice to support informed key risk decisions and trade-offs (balancing commerciality and risk appetite), being bold to ‘call it’, and influence senior decision makers.What will you need to bring?Detailed knowledge of the key security risks facing a financial services group, with a proven ability to assess and manage security risk and threats (e.g. using ISMS, MITRE ATT&CK, PASTA/STRIDE/DREAD frameworks and methodologies), set policy and manage compliance, design controls, provide assurance oversight and challenge, and offer advice balancing risk and reward.Experienced in the domains of information, cyber and physical security, with applied knowledge across key elements including identity and access management, data security, threat and vulnerability management, security architecture and design, security engineering and application development (inc. devsecops), cloud services and shared responsibility models (inc. native and microservices architecture), infrastructure security, people security, cryptography, security operations, and physical and environmental security. Demonstrable curiosity and understanding of the emerging technologies shaping the risk landscape (inc. AI, Digital Ledger Technology, Quantum).Considered a deep subject matter expert with a strong depth of understanding of the latest Operational Risk frameworks and technology being used across financial and non-financial services to enable them to lead a specialist risk centre of excellence.Experience of developing and owning group-level policy and setting risk-appetite, with expertise in continuous monitoring and reporting on group exposure. Able to set control objectives and set performance indicators.Demonstrates good and timely decision making that keeps the organisation moving forward and skilfully balances difficult trade-offs with the ability to understand business strategy and opportunity risks. Has examples where they have assimilated different sources of data and complex information to effectively problem solve and make relevant conclusions and recommendations.Demonstrates ability to interpret new operational risk regulation, emerging risks and technology innovations with forethinking to anticipate the impact of changes on the Group and act accordingly.Has acted as a Risk Specialist business partner, using strong communication skills to build partnerships and work collaboratively with others, including Risk Owner, Control Owner and Control Office to meet shared objectives.Able to work effectively with all other lines of defence and understands the different but complimentary roles. Seen as the primary Operational Risk specialist and expert across the Group to help deliver against aligned customer, business and strategic outcomes.Has examples of building effective, ongoing data-led Operational Risk control objectives working with others, including external regulators.Inspires others by gaining followership and commitment to future action through personal integrity and collaboration; demonstrating an inclusive approach. Coaches to go faster by demonstrating commitment to create an environment that builds teams with skills aligned to our Group Strategy and Purpose creating new and better ways for the organisation to change at pace.What’s in it for you?You'll have both opportunity and profile - we'll provide you with a diverse, energising and lively environment that focuses on equal opportunity and real career progression in a leading digital organisation. We'll take your personal and professional development very seriously and enable you to make a genuine difference to millions throughout your career with us.We also offer a wide-ranging benefits package, which includes:A generous pension contribution of up to 15%An annual performance-related bonusShare schemes including free sharesBenefits you can adapt to your lifestyle, such as discounted shopping30 days’ holiday, with bank holidays on topA range of wellbeing initiatives and generous parental leave policiesOur focus is to ensure we're inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative. And it’s why we especially welcome applications from under-represented groups.We’re disability confident. So if you’d like reasonable adjustments to be made to our recruitment processes, just let us know.So if you have a desire to work in an ambitious role in a dynamic environment, whilst gaining skills and experience within a friendly and motivated team then get in touch, we'd love to hear from you.
At Lloyds Banking Group, we're driven by a clear purpose; to help Britain prosper. Across the Group, our colleagues are focused on making a difference to customers, businesses and communities. With us you'll have a key role to play in shaping the financial services of the future, whilst the scale and reach of our Group means you'll have many opportunities to learn, grow and develop. We keep your data safe. So, we'll only ever ask you to provide confidential or sensitive information once you have formally been invited along to an interview or accepted a verbal offer to join us which is when we run our background checks. We'll always explain what we need and why, with any request coming from a trusted Lloyds Banking Group person.
We're focused on creating a values-led culture and are committed to building a workforce which reflects the diversity of the customers and communities we serve. Together we’re building a truly inclusive workplace where all of our colleagues have the opportunity to make a real difference.
Similar Jobs (5)
Head of Internal & External Supplier Risk, CCOR
locations
8 Locations
time type
Full time
posted on
Posted Yesterday
Assistant Manager - Security, Business Continuity & Supplier Control Specialist
locations
4 Locations
time type
Full time
posted on
Posted 10 Days Ago
Head of MCOBS Compliance, CCOR
locations
8 Locations
time type
Full time
posted on
Posted Yesterday
For over 320 years we’ve been making a difference to the lives of customers, businesses and communities. With us, you’ll be helping Britain prosper.You’ll be part of an ever-changing industry, playing a key role in shaping the financial services of the future whilst supporting our customers’ changing needs. For more Flexible Working Options please use the free text search, e.g. job sharing, variable hours, to identify relevant matches. Our CultureWhat Do Our Colleagues Think It's Like To Work Here?
#J-18808-Ljbffr
.webp "Apply4U | Sign Up")
.webp "Apply4U | Contact Us")
.webp "Apply4U | Sign up")
