Entity
About Crédit Agricole Corporate and Investment Bank (Crédit Agricole CIB)
Crédit Agricole CIB is the corporate and investment banking arm of Credit Agricole Group, the 12th largest banking group worldwide in terms of tier 1 capital (The Banker, July 2021). Nearly 8,600 employees across Europe, the Americas, Asia-Pacific, the Middle East and Africa support the Bank's clients, meeting their financial needs throughout the world. Crédit Agricole CIB offers its large corporate and institutional clients a range of products and services in capital markets activities, investment banking, structured finance, commercial banking and international trade. The Bank is a pioneer in the area of climate finance, and is currently a market leader in this segment with a complete offer for all its clients.
For more information, please visit www.ca-cib.com
Twitter: https://twitter.com/ca_cib
LinkedIn: https://www.linkedin.com/company/credit-agricole-cib/
Reference
2022-70361
Update date
04/07/2022
Responsibilities
· Reporting to the UK CISO, you will be supporting in the management of Information Security governance, risks, controls.
· Senior Stakeholder engagement with relevant teams (Head Office, Audit, Compliance and Risk), with IT (Infrastructure, Applications), Operations (Business Continuity, Crisis Management) and all business lines.
· Manage the Information Security Governance policies and Standards, monitor and report on performance and compliance
· Work closely with business stakeholders and project teams to understand, scope and define security requirements. Perform Security Risk assessments for new business projects and technology.
· Define and maintain the security controls catalogue, assess their effectiveness and make recommendations for control improvement. Provide effective reporting to the Information Security Committee.
· Continuous improvements aligned with industry best practice to increase effectiveness of information security across the business.
· Maintain the 3rd Party cyber risk, assuring mature cyber assessment framework. Work as a liaison with vendors, procurement and the legal to identify and remediate risks as required.
· Drive a culture of Cyber Security awareness, continuously developing and delivering a suite of information security trainings and awareness initiatives that periodically educates all the staff, assisting with the ethical phishing programme, and the analysis of results to identify areas of risk that need remedial action.
· Monitoring and evaluating the effectiveness of awareness programmes to determine the extent of behaviour change towards Information Security.
Skills & Experience
· Extensive background within Information Security
· Working with financial services, regulators and/or other relevant external stakeholders
· Considerable knowledge and experience in Information Security risk management processes and best practice
· Familiarity of relevant information security and IT frameworks, especially ISO27001, NIST-800 and COBIT.
· Experience of working in a global organisation, balancing global and local requirements
· Have a proven experience and understanding of how to work with and quickly build positive cross functional relationships.
· Have awareness of 1LOD to 3LOD operations and what they are needed for within financial operations.
· Extensive background within Information Security
· Working with financial services, regulators and/or other relevant external stakeholders
· Considerable knowledge and experience in Information Security risk management processes and best practice
· Familiarity of relevant information security and IT frameworks, especially ISO27001, NIST-800 and COBIT.
· Experience of working in a global organisation, balancing global and local requirements
· Have a proven experience and understanding of how to work with and quickly build positive cross functional relationships.
· Have awareness of 1LOD to 3LOD operations and what they are needed for within financial operations.
Je me crée un espace candidat
