THE COMPANY:
Our client is a leading international bank based in the City. They are looking for a Compliance Manager to join the team on a permanent basis.
THE RESPONSIBILITIES:
Our client is a leading international bank based in the City. They are looking for a Compliance Manager to join the team on a permanent basis.
THE RESPONSIBILITIES:
- Assess the Bank's existing information security (IS) control environment (considering all aspects of technology IS, data assets, and cyber risks and resilience controls);
- Identify the current controls aligned to these risks and highlight potential control gaps;
- Develop a strategy for enhancement to manage those risks in line with the Bank's agreed risk appetite;
- Act as a point of liaison with Head Office.
- Design and maintain a governance framework to capture strong cyber resilience, information security, data security and data protection;
- Provide Bank-wide supervisory oversight, management reporting, and policy for the existing IS, data, and cyber control framework;
- Support delivery of activities identified in the annual Compliance Monitoring Plan
- Undertake ongoing monitoring of key data and IS risks
- Develop and deliver staff and stakeholder training on data protection/privacy regulatory requirements and cyber security
- Build a profile of the Bank's cyber threats and associated controls and provide recommendations
- Fulfil the Deputy Data Protection Officer role in line with the requirements of current and incoming Data Protection Regulations (GDPR
- Provide timely expert advice on data protection to business units;
- Provide advice and ongoing oversight on Operational Resilience aligning the Bank's practices with regulator expectations.
- Strong compliance monitoring and assurance experience with a focus on IT/Data reviews or previous experience in an IT Audit function in a financial services firm
- Previous esponsibility for Data Protection, Data Governance, and/or Information Security;
- Good working knowledge of current and changing cyber threats and mitigating control strategies
- Practical understanding of key aspects of UK data and information protection regulations (GDPR) and best practices.
- Excellent communication skills are critical to ensure risk and control understanding is embedded throughout the business.