- Help to maintain ISO / IEC 27001 accredited certification, this includes:
- Developing consistent and repeatable IT Security Standards, Policies, and Procedures, compliant with the international standard for Information Security Management Systems, ISO / IEC 27001: 2013.
- Contributing to Internal and external audit processes
- Assisting with risk assessments for the ISO27001 Risk Treatment Plan and Statement of Applicability
- Participating in Leadership Team updates
- Contribute to IT Security compliance with the Bank's Internal Control Framework to ensure the accurate completion of testing schedules. This includes monitoring reports and alerts and submitting control evidence to IT Risk
- Contribute to IT Security with the Bank's Swift Customer Control Framework and annual attestation requirements. This includes collecting and collating evidence for the IT Risk team.
- Work with IT Risk and Internal Audit to ensure audit observations and actions are consistently managed and closed within acceptable timeframes.
- Conduct regular vendor and third-party risk assessments. This includes review of Third Party Assurance Questionnaires and Security Management Plans
- Educated to degree level and/or relevant and recognised professional level IT Security accreditation such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Security Plus
- ISO27001 Lead Implementer (beneficial).
- Knowledge and experience implementing of IT Security frameworks, policies, guidelines and standards, including the International Standard for Information Security Management, ISO/IEC 27001: 2013 and Cyber Essentials Plus.
- Experience of working with internal and external auditors and risk departments.
- In-depth knowledge of technical security solutions covering areas such as data leakage prevention, Security Information and Event Management, anti-malware, vulnerability management, threat assessment, encryption, Public Key Infrastructure, and cloud computing.
- Experience in IT Risk Management, including Third-Party Risk management
- Relevant experience in the Financial Services sector.
- Broad understanding of corporate IT infrastructures and technologies.
- Experience of successfully working under pressure to challenging deadlines.
- Ability to communicate effectively to a wide variety of audiences both within and outside of EBRD
- Ability to work both independently and as part of a team.
- Ability to operate sensitively and effectively in a multicultural environment.
- Good organisational and multi-tasking skills.
- Fluency in oral and written English is essential.
- Experience of Security Information and Event Management and tools used to monitor compliance with Polices and Standards.
- Experience with IT Security tools, including: anti-malware, end point detection and response, proxy filtering, security baselining, data loss prevention, network access control, vulnerability management, and firewalls.
- Varied, stimulating and engaging work that gives you an opportunity to interact with a wide range of experts in the financial, political, public and private sectors across the regions we invest in;
- A working culture that embraces inclusion and celebrates diversity;
- An environment that places sustainability, equality and digital transformation at the heart of what we do.
-
Security Compliance Associate
1 day ago
ECI - Hong Kong London, United KingdomECI is the leading global provider of managed services, cybersecurity, and business transformation for mid-market financial services organizations across the globe. From its unmatched range of services, ECI provides stability, security and improved business performance, freeing c ...
-
Security and Compliance Analyst
3 days ago
Digital Waffle London, United KingdomJob Title: Security Compliance Analyst Location: London · We are currently looking for a Security Compliance Analyst to join our client, a dynamic law firm based in Central London They pride themselves on their dedication to compliance and security, ensuring that the highest reg ...
-
IT Security Compliance Manager
1 week ago
ORI London, United KingdomJob Summary · We are seeking a dedicated Information Security Compliance Manager to join our team as an individual contributor. This role is essential for managing and ensuring the compliance of our IT frameworks, product production networks, and applications with international ...
-
Security Compliance Analyst
2 days ago
Payfit United KingdomSecurity Compliance Analyst - Apprenticeship · Do you want to help us shape what the future of work will look like and how it will best embrace our life's aspirations? If this sounds like a journey you want to embark on, we may have the right role for you · PayFit is an intuiti ...
-
Security and Compliance Analyst
5 days ago
Knewin London, United KingdomSecurity Compliance Analyst · Information Security · Office Location · Head of Information Risk · 35 hours per week, 9:30am to 5:30pm but additional hours may be required. We are happy to consider agile and flexible working patterns. Our approach to hybrid working allows for ...
-
Security Compliance Analyst
19 hours ago
Digital Waffle London, United KingdomJob Title: Security Compliance AnalystLocation: LondonSalary: Up to £70k DOEWe are currently looking for a Security Compliance Analyst to join our client, a dynamic law firm based in Central London They pride themselves on their dedication to compliance and security, ensuring tha ...
-
Analyst, IT Security, Compliance
5 days ago
Disability Solutions London, United Kingdom OTHERPurpose of Job The Analyst, IT Security, Compliance assists the IT Security Principal with IT Security Compliance objectives. This includes: · • ISO / IEC Maintaining accredited certification · • Swift Customer Security Control Framework - evidence collection and collation for ...
-
Security Compliance Specialist
6 days ago
FD Technologies London, United Kingdom Full timeJob Title: Security Compliance Specialist · Company: KX · Location: UK, Ireland, Ontario · About KX: · At KX, we specialize in building time-series, vector-native database solutions that empower our customers to unlock knowledge and predictive power with confidence. With over ye ...
-
Analyst, IT Security, Compliance
5 days ago
EBRD London, United KingdomRequisition ID · 34487 · Office Country · United Kingdom · Office City · London · Division · Information Technology · Contract Type · Fixed Term · Contract Length · 3 years · Posting End Date · Purpose of Job · The Analyst, IT Security, Compliance assists the IT Security Princ ...
-
Cyber Security Compliance Manager
6 days ago
Onclusive London, United KingdomAs a Cyber Security Compliance Officer, you are the guardian of our organisation's data governance and compliance framework. Your expertise will ensure that our data handling practices are in strict adherence to global data protection regulations and standards. This role is criti ...
-
Information Security Manager, Compliance
1 day ago
Ripple Labs Inc. London, United Kingdom TechnologyAt Ripple, we're building a world where value moves like information does today. It's big, it's bold, and we're already doing it. Through our crypto solutions for financial institutions, businesses, governments and developers, we are improving the global financial system and crea ...
-
Information Security Manager, Compliance
23 hours ago
Ripple London, United Kingdom TechnologyAt Ripple, we're building a world where value moves like information does today. It's big, it's bold, and we're already doing it. Through our crypto solutions for financial institutions, businesses, governments and developers, we are improving the global financial system and crea ...
-
Cyber Security Compliance Engineer
1 week ago
Energy Jobline ZR London, United KingdomFor more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries around the globe communicate. The Aviation Security Risk and Compliance Engineer will work within a small team within the Platforms and Software Services group who are responsibl ...
-
IT Security and Risk Compliance Manager
1 day ago
WPP London, United Kingdom#LI-Hybrid · Why we're hiring: · WPP IT provides IT services for WPP, group owned operating companies and agencies. The WPP group is the world's largest communications services group, and as a creative transformation company, WPP is helping its clients transform the future thro ...
-
Information Security and Compliance Analyst
5 days ago
Compyl United KingdomAbout: · Working at Compyl is much more than a job. It's for those searching for an opportunity to forge a new path, create new markets and attempt to do things that have never been done before. Each day, we challenge the status quo by critically thinking of innovative ways to ...
-
Cyber Security Compliance Engineer
19 hours ago
Inmarsat London, United KingdomAviation Security Risk and Compliance Engineer · Inmarsat is the leading satellite service provider, offering mobile satellite communication services and delivering reliable, seamless global connectivity. On May 31, 2023, Viasat completed its acquisition of Inmarsat, combining t ...
-
EMEA Security Compliance Specialist
13 hours ago
Adobe London, United Kingdom Full timeOur Company · Changing the world through digital experiences is what Adobe's all about. We give everyone—from emerging artists to global brands—everything they need to design and deliver exceptional digital experiences We're passionate about empowering people to create beautiful ...
-
Cyber Security Compliance Manager
18 hours ago
Energy Jobline ZR London, United KingdomJob Description · As a Cyber Security Compliance Officer, you are the guardian of our organisation's data governance and compliance framework. Your expertise will ensure that our data handling practices are in strict adherence to global data protection regulations and standards. ...
-
Information Security Manager, Compliance
1 week ago
Ripple London, United KingdomInformation Security Manager, Compliance Ripple · Ripple is the leading provider of crypto solutions for businesses. Learn how we're helping organizations of all sizes drive impact with the power of crypto. View company page · At Ripple, we're building a world where value move ...
-
EMEA Security Compliance Specialist
1 day ago
Adobe London, United Kingdom Full timeOur Company · Changing the world through digital experiences is what Adobe's all about. We give everyone—from emerging artists to global brands—everything they need to design and deliver exceptional digital experiences We're passionate about empowering people to create beautiful ...
Analyst, IT Security, Compliance - London, United Kingdom - The European Bank for Reconstruction and Development
Description
Purpose of Job
The Analyst, IT Security, Compliance assists the IT Security Principal with IT Security Compliance objectives. This includes:
• ISO / IEC Maintaining accredited certification
• Swift Customer Security Control Framework - evidence collection and collation for Annual Attestation
• Audit observations and actions – ensuring audit actions are addressed withing acceptable timeframes.
• Internal Control Framework – ensuring ICFs are appropriate and completed in a consistent manner.
Accountabilities & Responsibilities
Knowledge, Skills, Experience & Qualifications
QUALIFICATIONS
KNOWEDGE / EXPERIENCE
TECHNICAL SKILLS
What is it like to work at the EBRD?
Our agile and innovative approach is what makes life at the EBRD a unique experience You will be part of a pioneering and diverse international organisation, and use your talents to make a real difference to people's lives and help shape the future of the regions we invest in.
The EBRD environment provides you with: