Information Security GRC Manager at Moneycorp
London, England, United Kingdom -
Full Time


Start Date

Immediate

Expiry Date

20 Sep, 25

Salary

0.0

Posted On

21 Jun, 25

Experience

0 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Cloud Security, Spf, Complex Systems, Training, Encryption, Documentation, Network Architecture, It, Regulatory Compliance, Ids, Teams, Ips, Vulnerability Management, Isaca, Security Training, Giac, Cisa, Information Security Awareness, Ec Council, Email Systems

Industry

Information Technology/IT

Description

WELCOME TO MONEYCORP

We’re delighted you’re interested in being a part of Moneycorp.
In the last decade, Moneycorp has transformed from a largely domestic, consumer-focused provider of foreign exchange to an end-to-end global payments’ ecosystem.
With two banking licenses and operations across the entire value chain of the international payments and foreign exchange sectors, we enable businesses, institutions, and individuals to thrive beyond borders.
We help our clients realise their growth ambitions by providing them with worldwide reach, relentless regulatory excellence, and tailored, relevant solutions that resiliently optimise their financial operations.
We’re fervent about pursuing our goals, making substantial contributions to the payments industry, and consistently offering unwavering support to our clients at every stage of their journey.
Moneycorp is a place where energy, commitment to our shared success and collaboration are core to our DNA. We’re restless in our drive to surpass the expectations of our clients and unlock opportunities to support them at every stage of their journey.
The foundation of our success is our people, and nurturing a culture of belonging for all of our colleagues is central to our journey as a global business.
Find out more about Moneycorp’s offering, global footprint and capabilities here: About Us | moneycorp

WHO YOU ARE / YOUR NEXT CHALLENGE

Information is of paramount importance to Moneycorp and we naturally demand a “no compromise” approach to protecting our technology: to ensure it is available when required; and that our information is not inadvertently or maliciously disclosed, lost, stolen or altered.
This role sits within the Information Security Team, part of Group Risk and Compliance, reporting into the Head of Information Security. The candidate will be responsible for ensuring Moneycorp’s data and information processing systems are protected in-line with the information & cyber security programme.
We are looking for an Information Security Governance Risk and Compliance (GRC) professional, who has previously experience of Business Management, Information Security Operations or IT Operations and experience of maintaining an Information Security Management System. Reporting to the Head of Information Security, you will be supporting the business ensure continued certification of ISO27001 and SOC2.

Responsibilities

Maintain ISO27001/SOC2 certifications

  • Responsibility for the smooth running of the Information Security Management System: governance, risk management, remediation activities.
  • Responsible for maintaining Information Security policies are reviewed annually and updated in line with regulatory, business transformation or other outside factors
  • Work with the business areas to ensure good practices, including documented procedures

Deputise for the Head of Information Security

  • Where necessary, provide cover and assistance to the Head of Information Security managing the team

Identify and propose improvements

  • Re-evaluate policies, procedures, process and standards to ensure documentation is consistent, and recommend improvements

Information Security Third-party reviews

  • Maintain the 3rd party Information Security review schedule, provide guidance where necessary to junior members

Information Security Training and Awareness

  • Manage Moneycorp’s Information Security Training and Awareness programme

Operational Team activities

  • Responsible for ensuring daily tasks, collation of KPIs and RPIs, and managing ticket queue within SLAs

Information Security Architectural, Application or Service reviews

  • Review new and existing services with an Information Security lens, highlight any gaps and provide recommendations
Loading...