Y-Axis Jobs Logo
Send us feedback
telephone  +91 7670 800 001
Log in Sign up Try Premium
Assistant Vice President - Technology and Information Risk at Bank Of China
London, England, United Kingdom -
Full Time

Start Date

Immediate

Expiry Date

16 Jul, 25

Salary

0.0

Posted On

13 Jun, 25

Experience

0 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Due Diligence, Security Controls, Programmes, It, Cyber Security, Technology, Preparation, Indicators, Risk Analysis, Security Metrics, Information Security

Industry

Banking/Mortgage

Description

Data and Process Management Office (DPMO) acts as the leading function for the data governance programme of the Bank in the UK. It is responsible for establishing and ensuring implementation of related policies including data governance policies and undertaking data lifecycle management to ensure data standards and data quality. As an Assistant Vice President - Technology and Information Risk, you will be responsible for processes related to monitoring and reporting on technology and Information security across the Bank at a second line of defence (2LoD) level and review and strengthening of key security controls. You will play an important role to protect the Bank’s systems, applications and data as well as take an active role in the logging and management of IT security incidents. This is a full time permanent position.

KEY REQUIREMENTS

  • Undertake a comprehensive review of the Bank’s technology and Information cyber security risk analysis
  • Perform regular reviews of security controls implemented within the UK to mitigate the identified risks and make recommendations to strengthen controls, in accordance with the Bank’s ERMF risk and control taxonomies and risk appetite
  • Contribute to 2LoD oversight to ensure that key projects and programmes effectively identify and manage related security risks
  • Provide the appropriate level of support to departments and branches
  • Log, review and monitor key security metrics and indicators to measure the performance of technology and information security controls and undertake any necessary follow up actions
  • Participate in the planning, preparation and delivery of information security, cyber security and IT risk management related training
  • Ensure accurate and timely reporting of outputs and regulatory changes related to information security, cyber security and IT risk management
  • Perform information security due diligence and conduct ongoing information security monitoring of third party activities
  • Take active involvement in drafting, reviewing and implementing relevant policies and procedures in order to meet the legal, regulatory and Head Office requirements
  • Liaise with relevant teams on data, IT and information security issues
Responsibilities

Please refer the Job description for details