Network Security Capability Owner
3-6 Months
Remote with occasional visits to site for meetings (London)
£Negotiable (Inside IR35)

My client, a well known bank are looking for a Network Security Capability Owner to join their fast-paced team on an initial 3-6 month contract.

Capability owners define and maintain Capability Strategy, supported by Enterprise Architecture, Security Architecture and Control Owners, in response to business strategies, regulator expectations, technology and practise advancement, best practise and threat actor evolution, they also runs / drives respective Delivery forums, QBRs, SteerCos and Capability PODs.

Working closely with Cybersecurity Functions and peers across the HOST function to deliver sustainable results, build strong relationships with internal and external stakeholders (risk, audit, government agencies, industry forums etc.) to understand the IT/Information Security risk profile, monitor compliance with policies and standards and identify and address any regional or country specific requirements.

In this role you will-
* Demonstrates an understanding of customer and stakeholder requirements by providing specialist input and knowledge and having a detailed understanding of the different short and long term shifts in business/function patterns of activity and demand.
* Understands and interprets developments and changes in future business requirement and ensures the appropriate reaction and response through discourse and the implementation of relevant, security focused, technical and procedural solutions.
* Ensure the fair treatment (service excellence) of our customers is at the heart of everything we do, both personally and as an organisation.
* Continually reassess the IT Security and operational risks associated with the role and inherent in the business, taking account of changing economic or market conditions, legal and regulatory requirements, operating procedures and practices, management restructurings, and the impact of new technology.
* Ensure all actions take account of the likelihood of operational risk occurring. Also by addressing any areas of concern in conjunction with entity management and/or the appropriate department.

Skills required for this role
* Demonstrated leadership experience with large, complex programmes, and deeply technical, global, expert teams.
* A background in information systems, technology, architecture, design, and service delivery of defense-in-depth capabilities.
* Strong stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders.
* An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner.
* Proven ability to collaborate across industry, academia, and government to solve complex cybersecurity problems.
* Excellent understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws.
* Experienced in owning a capability, technology, or platform together with the responsibilities associated with running a team of up to 20 individuals.
* Seasoned technology leader with rich experience of leading engineering teams, supporting a group of platforms / services comprised of a mix of technologies and tools.
* Likely from a technology or engineering background with developed understanding of Technology Delivery Lifecycle, engineering practices, underlying infrastructure, tooling and architecture & design principles
* Influences beyond his/her department, leads transformation initiatives to change behaviours and mindset which makes the bank better
* Deep SME knowledge of network security, including capabilities aligned typically
* Experience working in a highly regulated, large multi-national environment.
* Adaptive to changing situations, with strong desire to delegate and empower the team.

Technical Skills
* Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards.
* Experience working within Cloud, SaaS and emerging cloud use-cases for web/mobile and enterprise companies
* Background with cloud technologies including Amazon Web Services, Azure and/or Google Cloud Platforms
* Strong commercial background and knowledge of cybersecurity offerings

Disclaimer:

This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.