let’s make something together

Give us a call or drop by anytime, we endeavour to answer all enquiries within 24 hours on business days.

Find us

PO Box 16122 Collins Street West
Victoria 8007 Australia

Email us

info@domain.com
example@domain.com

Phone support

Phone: + (066) 0760 0260
+ (057) 0760 0560

Head of SSE Security

  • By Tatiana Kouhan
  • 3 October 2023
  • 319 Views

Your responsibilities

  • Supporting the establishment of they as a valued contributor to information sharing efforts across the industry that helps to drive a positive image of the bank with our peers and regulators in the markets we serve.

  • Supporting a “self-critical” culture whereby identification of weaknesses in the bank’s control plane (people, process and technology) are brought to light in an effective manner and addressed.

  • Supporting a culture of individual self-improvement, whereby staff are expected to maintain subject matter expertise within their area of focus and within the realm of cybersecurity more broadly.

  • Supporting engagement of Global Businesses and Functions everywhere the company does business, that drives a global up-lift in cybersecurity awareness, helping to “tell the story” of the company Cybersecurity efforts.

  • Supporting engagement within the Lines of Defence Risk Management framework adopted by the company, to ensure complete transparency and effective working relationships across all lines of defence.

  • Train, develop and mentor less experienced analysts.

  • Management of all reporting of Compliance across the Self Service Domain producing the necessary MI, ensuring reporting is automated wherever feasible and reporting capability is continuously improved.

  • Engagement with Client Engagement Managers to gather reporting requirements and gauge effectiveness of reporting.

  • Technical security standards management – Ensure Self Service technical security standards owned by the CT function are maintained.

  • Process and procedure management – Ensure all Self Service processes and procedures are maintained.

  • Risk and audit issue management – Ensure regulatory, risk and audit issue mitigation actions against Self Service, owned by the CT function are actioned within agreed timescales and periodic reporting of such is maintained.

  • Internal control assurance – Manage the reviewing, gathering of evidence and reporting on effectiveness of Self Service controls.

  • Branding and Communications – increasing exposure across the function including presentations for the Heads of Functions.

  • Functionally and organisationally to the Head of Major Platform Security within Cybersecurity Global Defence.

  • Members of the Global SSE Engineering Team will report to this position.

Our requirements

  • Excellent technical knowledge and security management of Windows Operating System essential

  • Security Information and Event Management (SIEM) knowledge desirable – Splunk knowledge preferred

  • VBA and Powershell scripting.

  • Good knowledge of Sharepoint, Confluence and Jira.

  • Excellent technical data analysis skills.

  • Experience with project management.

  • Ability to develop and track key performance indicators (KPIs) and metrics for evaluation of operational effectiveness as well as providing recommendations for control improvement and mitigating control adjustments.

  • McAfee product set experience preferred – including ENS, Drive Encryption and Application Control (Solidcore).

  • Configuration Baseline Management experience desirable but not essential.

  • Knowledge of Self Service environment desirable, but not essential.

  • Proven team leadership skills.

  • Fluency with the English language.

  • Excellent communication and interpersonal skills.

  • Proven ability to produce clear and concise reports for targeted audiences across internal and external stakeholders.

  • Results focused with an ability to work autonomously.

  • Resourceful problem solver.

  • Proven investigative skills.

  • Business Analysis skills.

  • Self-motivated and possessing of a high sense of urgency and personal integrity.

  • Highest ethical standards and values.

  • Good understanding of cyber security principles, global financial services business models, regional compliance regulations and laws.

  • Good understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, EU data security and privacy acts, FFIEC guidelines, CIS and NIST standards desired, but not essential.

Optional

  • Formal education in Information Security, Cybersecurity, Computer Science or similar and/or commensurate demonstrated work experience

  • Industry qualifications (CISSP, CISA, CISM).

Note: Prepare your CV in English (PDF), fill in the form, and apply! 🙂
Please include in your CV the following clause necessary for the recruitment process:

“I agree to the processing of personal data that I have made available voluntarily in the recruitment process by the Administrator of personal data, i.e. Dotcommunity Spółka z ograniczoną odpowiedzialnością [Ltd.] based in Cracow, 15 Żabiniec Street, 31-215 Cracow, registered in Poland, the Cracow’s District Court – Śródmieście, XI Commercial Division of the National Court Register under number 0000468484, VAT number: 9452174499, (“Dotcommunity”) in order to carry out the recruitment process for the Head of SSE Security position on the basis of Art.6 item 1a of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)”

Dotcommunity is registered in the Register of Employment Agencies (KRAZ) under the number 9904.

    *-required