Information Security Manager
Anywhere (UK)
Monzo
Join over 9 million people with a Monzo bank account. Free current accounts, joint accounts and business banking for all! We make money work for everyoneAt Monzo we’re aiming to build the best bank in the World. We are always keen to hear from capable, creative people who want to help us accomplish that goal. We want our bank to be safe and secure for our customers, so security is very important to us.
Security at Monzo
We are looking for a proactive, technically-minded and organised Information Security Manager to join our growing Information Security team in the bank’s 1st line of defence which is responsible for directly assessing, controlling and managing our security risk. The team is part of Monzo’s Security group which is responsible for keeping the bank and its customer data secure.
One of the guiding principles of security at Monzo is that security at the expense of user experience is a last resort. We aim to move mountains in the background so that we can build world-class features without compromising on security.
You'll be involved in a variety of work, all aimed at keeping our customer data secure and should expect to:
- Manage the end-to-end audit cycle, including answering requests and working with auditors to deliver internal cyber audits and PCI DSS assessments;
- Ensure that identified gaps from audit reports and assessments are delivered and embedded (as required) in change and continuous improvement processes;
- Work with stakeholders across the business to ensure that sufficient controls are in place to mitigate known security risks;
- Draft security policies, standards, guidelines and procedures;
- Work with the other Security squad and across Monzo to embed good security practice;
- Provide Information Security advice to a variety of stakeholders across Monzo;
- Own and manage Information Security projects and initiatives;
- Work with Risk and Compliance to deliver management information for security risk reporting to the Board and as required.
You should apply if:
- What we’re doing in Security excites you and you want to make a real difference to the way in which we deliver Information Security at Monzo
- You have solid experience of working in an Information Security team
- You have CompTIA Security+, CISM, CISSP or are working towards one (or more) of these qualifications and are keen to develop your skills and experience further
- You are familiar with standards such as NIST and ISO 27001/02
- You enjoy working in a fast paced environment
- You're technically minded with the ability to think laterally and enjoy providing solutions to problems
- You have experience managing multiple projects simultaneously, and are comfortable with regular context-switching;
- You’re comfortable reading and interpreting technical requirements, regulation and procedures
- You love taking the initiative, prioritising and driving things forward, without being told what to do
- You’re comfortable interacting with technical and non-technical stakeholders;
- You are an excellent communicator and can communicate technical information in a way that others can easily understand
Salary and logistics
- Closing date for applications is Midnight on Sunday 16th May
- This role is at Level 3-4 of our Risk & Compliance framework, with a salary of £60,000 - £100,000 DOE
- This can be based in our new London office or remote working within the UK
- We support flexible working arrangements
Equal Opportunity Statement
At Monzo, embracing diversity in all of its forms and fostering an inclusive environment for all people to do the best work of their lives with us. This is integral to our mission of making money work for everyone.
We're an equal opportunity employer. All applicants will be considered for employment without attention to ethnicity, religion, sexual orientation, gender identity, family or parental status, national origin, veteran, neurodiversity status or disability status.
___________________________________________________________________________________________________________________________
#LI-CM1
#LI-REMOTE
Tags: Audits CISM CISSP Compliance CompTIA ISO 27001 NIST PCI DSS
Perks/benefits: Flex hours
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open Forensics-related jobs