Pause
Lecture
Moteur de recherche d'offres d'emploi Crédit Agricole CIB

IS Governance, Risk & Compliance Officer


Vacancy details

General information

Entity

About Crédit Agricole Corporate and Investment Bank (Crédit Agricole CIB)

Crédit Agricole CIB is the corporate and investment banking arm of Credit Agricole Group, the 12th largest banking group worldwide in terms of tier 1 capital (The Banker, July 2021). Nearly 8,600 employees across Europe, the Americas, Asia-Pacific, the Middle East and Africa support the Bank's clients, meeting their financial needs throughout the world. Crédit Agricole CIB offers its large corporate and institutional clients a range of products and services in capital markets activities, investment banking, structured finance, commercial banking and international trade. The Bank is a pioneer in the area of climate finance, and is currently a market leader in this segment with a complete offer for all its clients.


For more information, please visit www.ca-cib.com

Twitter: https://twitter.com/ca_cib
LinkedIn: https://www.linkedin.com/company/credit-agricole-cib/
  

Reference

2022-70361  

Update date

04/07/2022

Job description

Business type

Types of Jobs - Corporate & Investment Banking

Job title

IS Governance, Risk & Compliance Officer

Contract type

Permanent Contract

Job summary

Responsibilities

·        Reporting to the UK CISO, you will be supporting in the management of Information Security governance, risks, controls.

·        Senior Stakeholder engagement with relevant teams (Head Office, Audit, Compliance and Risk), with IT (Infrastructure, Applications), Operations (Business Continuity, Crisis Management) and all business lines.

·        Manage the Information Security Governance policies and Standards, monitor and report on performance and compliance

·        Work closely with business stakeholders and project teams to understand, scope and define security requirements. Perform Security Risk assessments for new business projects and technology.

·        Define and maintain the security controls catalogue, assess their effectiveness and make recommendations for control improvement. Provide effective reporting to the Information Security Committee.

·        Continuous improvements aligned with industry best practice to increase effectiveness of information security across the business.

·        Maintain the 3rd Party cyber risk, assuring mature cyber assessment framework. Work as a liaison with vendors, procurement and the legal to identify and remediate risks as required.

·        Drive a culture of Cyber Security awareness, continuously developing and delivering a suite of information security trainings and awareness initiatives that periodically educates all the staff, assisting with the ethical phishing programme, and the analysis of results to identify areas of risk that need remedial action.

·        Monitoring and evaluating the effectiveness of awareness programmes to determine the extent of behaviour change towards Information Security.

 

Skills & Experience

·        Extensive background within Information Security

·        Working with financial services, regulators and/or other relevant external stakeholders

·        Considerable knowledge and experience in Information Security risk management processes and best practice

·        Familiarity of relevant information security and IT frameworks, especially ISO27001, NIST-800 and COBIT.

·        Experience of working in a global organisation, balancing global and local requirements

·        Have a proven experience and understanding of how to work with and quickly build positive cross functional relationships.

·        Have awareness of 1LOD to 3LOD operations and what they are needed for within financial operations.

Position location

Geographical area

Europe, United Kingdom

City

London

Candidate criteria

Minimal education level

High school / Secondary school / A levels / AS levels / IB

Academic qualification / Speciality

N/A

Level of minimal experience

3-5 years

Experience

·        Extensive background within Information Security

·        Working with financial services, regulators and/or other relevant external stakeholders

·        Considerable knowledge and experience in Information Security risk management processes and best practice

·        Familiarity of relevant information security and IT frameworks, especially ISO27001, NIST-800 and COBIT.

·        Experience of working in a global organisation, balancing global and local requirements

·        Have a proven experience and understanding of how to work with and quickly build positive cross functional relationships.

·        Have awareness of 1LOD to 3LOD operations and what they are needed for within financial operations.