girl looking into her desktop
Back to search results

Information Security Controls Specialist

Camberley, , United Kingdom;

Job Description:

The GIS EMEA Risk Management Lead will be a member of the Governance, Risk & Compliance EMEA team and be responsible for risk management activities on behalf of GIS in EMEA, working with the team to respond to Risk and Control Self-Assessment (RCSA), Risk Self-Assessment (RSA), Internal Capital Adequacy Assessment Process (ICAAP) and Board reporting requirements, Risk Management Activities, and innovating to design and implement new and creative ways to identify, represent  and manage information security risk. In addition, the role offers the opportunity to work closely with our Regulatory Management and Policy Governance teams to ensure a cohesive and dynamic approach to GRC, with exposure to the breadth of activities undertaken within GIS.

  • Lead the Risk Management function within GIS across EMEA, working with key staff to ensure timely, accurate and comprehensive coverage of risk management activities
  • Work alongside Country Information Security Officers and GIS control owners to represent risk within the risk management routines, including the RCSA, Quarterly RSA’s and ICAAP processes across all relevant EMEA Legal Entities
  • Represent GIS EMEA on Conduct Risk activities
  • Work closely with the EMEA GIS Chief Operating Officer to draft and gain approval for board reporting, evidencing the GIS Risk Position across EMEA Legal Entities
  • Bring an innovating and creating approach to Risk Management, supporting development of technology and automation to increase efficiency and identifying areas where improvements or enhancements can be made, and driving these through in support of Operational Excellence
  • Work with regional Regulatory Management teams, EMEA Laws, Rules, Regulations & Guidance (LRRG) team and Country Information Security Officers as directed to enhance and refine processes
  • Support Enterprise and Legal Entity (LoB / FLU) risk management processes
  • Support / drive risk mitigation activity identified by Business Information Security Officers (BISO)
  • Support the delivery of risk, controls and governance processes, including;
    • Risk / concern Intake
    • Engage and coordinate activity with non-GIS risk management teams regionally (wider GT&O, Compliance & Operational Risk and Audit) 

Support and drive risk mitigation activity identified by Post Incident Review (PIR) processes when required working closely with Cyber Security Defense (CSD) teams

Job Band:

H4

Shift: 

Hours Per Week:

35

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

The GIS EMEA Risk Management Lead will be a member of the Governance, Risk & Compliance EMEA team and be responsible for risk management activities on behalf of GIS in EMEA, working with the team to respond to Risk and Control Self-Assessment (RCSA), Risk Self-Assessment (RSA), Internal Capital Adequacy Assessment Process (ICAAP) and Board reporting requirements, Risk Management Activities, and innovating to design and implement new and creative ways to identify, represent  and manage information security risk. In addition, the role offers the opportunity to work closely with our Regulatory Management and Policy Governance teams to ensure a cohesive and dynamic approach to GRC, with exposure to the breadth of activities undertaken within GIS.

  • Lead the Risk Management function within GIS across EMEA, working with key staff to ensure timely, accurate and comprehensive coverage of risk management activities
  • Work alongside Country Information Security Officers and GIS control owners to represent risk within the risk management routines, including the RCSA, Quarterly RSA’s and ICAAP processes across all relevant EMEA Legal Entities
  • Represent GIS EMEA on Conduct Risk activities
  • Work closely with the EMEA GIS Chief Operating Officer to draft and gain approval for board reporting, evidencing the GIS Risk Position across EMEA Legal Entities
  • Bring an innovating and creating approach to Risk Management, supporting development of technology and automation to increase efficiency and identifying areas where improvements or enhancements can be made, and driving these through in support of Operational Excellence
  • Work with regional Regulatory Management teams, EMEA Laws, Rules, Regulations & Guidance (LRRG) team and Country Information Security Officers as directed to enhance and refine processes
  • Support Enterprise and Legal Entity (LoB / FLU) risk management processes
  • Support / drive risk mitigation activity identified by Business Information Security Officers (BISO)
  • Support the delivery of risk, controls and governance processes, including;
    • Risk / concern Intake
    • Engage and coordinate activity with non-GIS risk management teams regionally (wider GT&O, Compliance & Operational Risk and Audit) 

Support and drive risk mitigation activity identified by Post Incident Review (PIR) processes when required working closely with Cyber Security Defense (CSD) teams

Learn more about this role

Full time

JR-21065613

Band: H4

Manages People:

Manager:

Talent Acquisition Contact:

James Bannerman

Referral Bonus:

0