Business Information Security Officer

Embark on a transformative journey as a Business information Security Officer. At Barclays, our vision is clear –to redefine the future of banking and help craft innovative solutions. At Barclays, our vision is clear – to redefine the future of banking and help craft innovative solutions. We are looking for team members who are passionate, forward-thinking, and eager to make a difference. In this role, you will connect with global technology teams across the business to gather and analyze data for various ongoing projects, utilizing your experience and background in cyber security controls to provide commentary to senior stakeholders regarding tolerances surrounding Identity and Access Manager, Data Security, Vulnerability Manager, and more.

To be successful as a Business Information Security Officer, you should have experience with:

• Cyber security in a multi-faceted and highly regulated enterprise environment

• Direct accountability for business-aligned risk outcomes

• Executive stakeholder influence and communication, translating multi-layered cyber/technology regulatory risk into clear, strategy-ready options and trade-offs

• Enterprise cyber risk governance, including MI/KRIs/KCIs, risk acceptances, and prioritized remediation programs

Some other highly valued skills may include:

• Regulatory remediation experience (NYDFS 23 NYCRR 500, UK PRA/FCA, SEC)

• Establishing partnership across 1LOD/2LOD, Legal, Compliance, Internal Audit, and Technology to drive proportionate control adoption

• Cyber Security certification(s) (CISSP, CCSP, CEH, etc) are a plus

You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen, strategic thinking, digital and technology, as well as job-specific technical skills.

This role is located in Whippany, NJ.

Minimum Salary: $ 125,000

Maximum Salary: $ 175,000

The minimum and maximum salary/rate information above include only base salary or base hourly rate. It does not include any other type of compensation or benefits that may be available.

Barclays employees are eligible for a suite of competitive and generous employee benefits, including medical, dental and vision coverage, 401(k), life insurance, and other paid leave for qualifying circumstances.

This position is eligible for an incentive award.

Purpose of the role

To provide a primary liaison service between the business, technology, and security functions. In order to ensure the confidentiality, integrity and availability of information, and support the mitigation of security risk. 

Accountabilities

• Collaboration with stakeholders to understand their security requirements in business processes and IT projects, to enhance overall risk management.
• Execution of risk assessments to identify and prioritise potential cybersecurity threats that could impact the banks operations and data and guide the implementation of mitigation strategies and communicate findings to relevant findings to relevant senior stakeholders.
• Collaboration with business units to develop and implement security policies and procedures for the banks operations aligned to the risk management framework.
• Management of the implementation, testing and monitoring of security controls across the banks IT systems to ensure the effectiveness of controls and mitigation of risk.
• Execution of training content and sessions to educate employees, enhance cybersecurity awareness and provide guidance on safe online practices.
• Management of complex cybersecurity incidents by collaborating with IT teams and response experts to effectively resolve cases through analysis, expertise support and project supervision.
• Identification of emerging cybersecurity trends, threats, and new technologies to address potential risks by advocating the adoption of new security solutions.

Assistant Vice President Expectations

• To advise and influence decision making, contribute to policy development and take responsibility for operational effectiveness. Collaborate closely with other functions/ business divisions.
• Lead a team performing complex tasks, using well developed professional knowledge and skills to deliver on work that impacts the whole business function. Set objectives and coach employees in pursuit of those objectives, appraisal of performance relative to objectives and determination of reward outcomes
• If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L – Listen and be authentic, E – Energise and inspire, A – Align across the enterprise, D – Develop others.
• OR for an individual contributor, they will lead collaborative assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will identify new directions for assignments and/ or projects, identifying a combination of cross functional methodologies or practices to meet required outcomes.
• Consult on complex issues; providing advice to People Leaders to support the resolution of escalated issues.
• Identify ways to mitigate risk and developing new policies/procedures in support of the control and governance agenda.
• Take ownership for managing risk and strengthening controls in relation to the work done.
• Perform work that is closely related to that of other areas, which requires understanding of how areas coordinate and contribute to the achievement of the objectives of the organisation sub-function.
• Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategy.
• Engage in complex analysis of data from multiple sources of information, internal and external sources such as procedures and practises (in other areas, teams, companies, etc).to solve problems creatively and effectively.
• Communicate complex information. 'Complex' information could include sensitive information or information that is difficult to communicate because of its content or its audience.
• Influence or convince stakeholders to achieve outcomes.

All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship – our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset – to Empower, Challenge and Drive – the operating manual for how we behave.