AVP/Manager - Cyber Security Incident - BFS

Cyber security incident Manager AVP

Role

- The candidate will be required to be a self-starter able to identify and implement necessary tasks within their area of responsibility and the flexibility necessary to work within the Joint Operating Centre (JOC).

- Being part of a multifunctional team providing the communication and co-ordination services that deliver a world class Joint Operations Centre function.

- Engaging in critical security activities which will ultimately drive security improvements and have a positive impact on security culture across Barclays and any dependent Business Divisions by providing its common, services and by sharing best practice.

- Providing support to operational teams and to brief on the information security threat landscape to senior management when required.

- Executing a clear framework for the identification and communication of security incidents managed within the JOC globally.

- Participating in a security response capability to ensure that Barclays can call on expert capability and respond rapidly to security events, any time any place.

- Represent Physical and Cyber Security interests in internal JOC planning.

- Responsible for assisting in the review of events, including notification, escalation response and post incident review.

- Delivers the execution of triage controls to detect and prevent attackers from infiltrating company information or jeopardizing e-commerce programs.

- Delivers recommendations and actions to improve the detection, escalation, containment and resolution of security incidents,Shift work to ensure 24x7x365 coverage.

Essential Skills/Basic Qualifications:

Knowledge of

- Cyber Kill Chain

- Intelligence Driven Defense

- Attack Monitoring including documentation and ticketing fundamentals

- Digital Forensic and Incident Response skills

- Security architectures

Good understanding of security processes and technologies including;

- Threat Analysis

- Vulnerability Assessment

- Security Monitoring

- Compliance

- Auditing

Good working knowledge of key tools; including:

- Resilient,

- ServiceNow,

- Rapide,

- Alarmpoint,

- Microsoft SharePoint & Office,

- Atlassian suite of products including Confluence and JIRA

- Able to demonstrate a proven track record leading a team in the effective delivery of Incident and Problem Management.

- A good understanding of and keen interest in geopolitics, international security and current affairs.

- A good technical understanding of the threats against the financial industry from both the physical and Cyber threat domains

- Fluent English speaker

Desirable Skills

- Stakeholder management and leadership

- Confident, with the ability to remain calm, controlled and focused in pressure situations

- Ability to identify operational risks and issues in a fast time environment, and take proportionate and appropriate actions.

- Ability to write concise reports based on complex data with accuracy, brevity, and speed whilst reporting to the highest levels of the organisation.

- A good understanding of a Corporate, Physical Security Environment.

- Previous experience in a Security Control Room environment is desirable.

- UK Security Clearance (preferable)