Head, IT Security

Company Description

Standard Bank Group is a leading Africa-focused financial services group, and an innovative player on the global stage, that offers a variety of career-enhancing opportunities – plus the chance to work alongside some of the sector’s most talented, motivated professionals. Our clients range from individuals, to businesses of all sizes, high net worth families and large multinational corporates and institutions. We’re passionate about creating growth in Africa. Bringing true, meaningful value to our clients and the communities we serve and creating a real sense of purpose for you.

Job Description

Open to role being based in Jersey or Isle of Man.

Design, develop and deliver the IT Security and Logical Access Strategies for Interantional Client Solutions (ICS), ensuring continuous alignment with SBG Group.

Qualifications

Desired Requirements 

• CIISP or equivalent
• A sound general knowledge of Information Technology and Cyber Security methodologies
• Sound judgement in relation to business and risk situations, specifically in relation to cyber and information risk

 

Additional Information

Job Purpose

• Develop the ICS IT Security strategy aligned with SBG strategic goals and contribute to the overall ICS and Wealth IT Strategy
• Develop strategic and operational roadmaps and plans for ICS IT Security and direct the execution of said plans
• Develop and implement cyber awareness plans to improve the information risk culture within ICS, including themed campaigns and testing. Provide Cyber Education sessions to SBOG Executives including Non Executive Directors of SBOG
• Ownership of the risk and control self-assessment for IT Security and Access Management in terms of coverage, assurance and remediation activities. Represent CIO as lead facilitator on IT related Internal/External Audits as required, including remediation of any findings
• Accountable for the monitoring and compliance of ICS IT functions against IT Security policies and standards and for ensuring the implementation, roll out and embedding of technology related change is compliant with Security Governance requirements
• Accountability for the cyber resilience of all technology related change from project inception assuring full compliance with Group Security Policies and Standards