Business Information Security Officer

Join Barclays as a Business Information Security Officer, where you’ll lead the evolution of our digital landscape, driving innovation and operational excellence. In this role, you will provide cyber information security support to the Markets business as BISO within Barclays Europe, taking responsibility for managing and overseeing the markets’ cyber risk posture, providing cyber incident support, offering regulatory assistance, and engaging with key stakeholders across the Markets Europe business.

Please note that fluency in both English andFrench is an essential requirement for this position.

To be successful as a Business Information Security Officer, you will need the following:

• Strong critical thinking and analytical skills, with substantial demonstrable experience in the cyber information security field, including systems audit, internal controls, and/or security consulting.
• Extensive, proven experience in implementing or managing cyber information security risk management processes and tools.
• In-depth knowledge and understanding of the regulatory landscape in France and the broader European Union, including relevant legislation, directives, and regulations governing cyber information security.

Some other highly valued skills may include:

• Cyber information security certifications such as CISM, CISSP, or similar recognised standards.
• Significant experience in cyber information security within the Financial Services industry.
• Fluency in additional EU official languages in addition to French and English.

You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen, strategic thinking and digital and technology, as well as job-specific technical skills.

The successful candidate will be based in Paris.

Purpose of the role

To provide a primary liaison service between the business, technology, and security functions. In order to ensure the confidentiality, integrity and availability of information, and support the mitigation of security risk. 

Accountabilities

• Collaboration with stakeholders to understand their security requirements in business processes and IT projects, to enhance overall risk management.
• Execution of risk assessments to identify and prioritise potential cybersecurity threats that could impact the banks operations and data and guide the implementation of mitigation strategies and communicate findings to relevant findings to relevant senior stakeholders.
• Collaboration with business units to develop and implement security policies and procedures for the banks operations aligned to the risk management framework.
• Management of the implementation, testing and monitoring of security controls across the banks IT systems to ensure the effectiveness of controls and mitigation of risk.
• Execution of training content and sessions to educate employees, enhance cybersecurity awareness and provide guidance on safe online practices.
• Management of complex cybersecurity incidents by collaborating with IT teams and response experts to effectively resolve cases through analysis, expertise support and project supervision.
• Identification of emerging cybersecurity trends, threats, and new technologies to address potential risks by advocating the adoption of new security solutions.
• Directly support the reporting of our risk exposure and control maturity against the relevant Policies and Standards.
• Through effective analysis, they will support the design and implementation of information and cyber security controls and change initiatives across Barclays Europe to keep the bank, customers, clients, and colleagues safe, secure and always on.
• Support cyber intelligence engagement strategies with public private partnerships and identify and develop external intelligence stakeholder relationships in line with cyber strategy.

Vice President Expectations

• To contribute or set strategy, drive requirements, and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/processes; deliver continuous improvements and escalate breaches of policies/procedures.
• Be a subject matter expert within own discipline and will guide technical direction. Lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. Train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions..
• Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment.
• Manage and mitigate risks through assessment, in support of the control and governance agenda.
• Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does.
• Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business.
• Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies.
• Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions.
• Adopt and include the outcomes of extensive research in problem solving processes.
• Seek out, build, and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes.
• Develop a comprehensive knowledge of the supported business unit, and foster an effective information security culture to enable the business to achieve its objectives.
• Provide expert-level cyber security briefings and stakeholder management support tailored for Barclays Europe Executive leadership.
• Deliver specialised cyber security expertise to external stakeholders, including regulatory bodies, ensuring clear and impactful communication.
• Excellent proficiency in IT productivity applications (e.g., Office Applications).

All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship – our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset – to Empower, Challenge and Drive – the operating manual for how we behave.