-
Lloyds Banking Group
- London
- Lloyds Banking Group - London
Lloyds Banking Group is committed to Help Britain Prosper and become the best bank for customers.
The Head of Technology Risk – IT Security is responsible for ensuring strong risk management processes and controls are in place for IT security risks within LBG.. As a key member of both the IT BUCF and, operating at a senior level, you will be a key contributor to both strategic and operational decision making by providing insight, challenge and support.
You will lead a highly skilled team of technology risk professionals who engage at all levels across the IT teams to identify, assess and manage IT security risks. Additionally, as a member of the IT BUCF leadership team, you will define and shape the approach to effective risk ownership and action within the business to drive risk reduction and remain within risk appetite, and support the definition of the Risk and Control management strategy and practices that will strengthen IT’s performance.
Accountabilities:
•Holds the relationship with the IT Cyber Security Director and leads, challenges and approves the Director level risk portfolio
•Understands the business context of the area, strategies and formulates a forward view of risk with the IT Cyber Security team based on future aspiration
•Performs and embeds risk discovery activity with IT Cyber Security Director/Heads of. Has an IT Cyber Security wide view of the risk portfolio to enable risk calibration and identify risk aggregation points
•Validates the portfolio of risk is an accurate and full representation of the known risk landscape. Primary challenge point for risk assessments.
•Plays a key role in Group CIO Risk Profile Management and the material risks owned by the IT Cyber Security Director that contribute to the Group CIO risk profile
•Identifying areas of risk and working with the business to develop appropriate controls to address these weaknesses. Provide holistic insights into the Group Policy Framework.
•Building strong relationships within Senior Management across Group CIO, Chief Security Office and beyond to obtain / exchange information, identify best practices and where appropriate, to respond to changes in the internal and external environment.
•Drives and develops a culture of continuous improvement in all areas to identify solutions which deliver risk remediation and mitigation within risk appetite.
•Educating the Business Units/s leadership team and facilitating the identification and proactive management of their risks and controls
Key Objectives:
•Maintain an effectively managed activities plan for IT Cyber Security ensuring risk management activity is accurate, complete and timely.
•Assess the risk control environment across IT and lead any required improvements to ensure its effective design and operation.
•Through analysis of MI and risk data, provide inputs into the IT Divisional Risk Committee and other department risk forums taking ownership of subsequent actions.
•Owning, as part of the IT BUCF leadership team, the overall relationship with the IT Cyber Security Director and the Chief Security Office.
•Foster a risk aware culture within Business Unit/s ensuring adequate training and risk expertise is provided across their operations.
•Work with the IT teams and their business areas to ensure the Group Policy and Standards for Information and Cyber Security are embedded and effective and that compliance responsibilities are fulfilled.
Key Capabilities/ Knowledge:
•5 years plus experience of information/IT and cyber security risk management and understanding the external environment and threat landscape.
•IT cyber security or other relevant professional qualification and an industry cyber security risk network.
•Ability to critically think about problems in an innovative way together with strategic understanding of project delivery change lifecycle and the information/IT and cyber security fit within this.
•Experience of partnering senior stakeholders with a proven track record of effective presentation and influencing.
•Resilience in overcoming challenges and strong self-awareness with the desire to exceed expectations and bring your team with you.
•Able to effectively input into broader risk management activity in support of wider BUCF objectives.
•Leading and coaching your team in the fulfilment of their individual accountabilities to ensure effective coverage of IT security risk, controls and compliance across Business Unit/s
•Deputising for Director, IT BUCF as well as across other areas of IT BUCF, where necessary.
•Collaborating with senior managers across the three Lines of Defence (e.g. Group Risk, Internal Audit) to identify, share and implement best practices across the organisation
Head of Technology Risk – IT Security
Chiswell Street
Our vision of being the best bank for customers is dependent on every colleague committing to and demonstrating our core value of “putting customers first”. In joining us you’ll have a role that matters and will contribute towards the Group achieving our vision through your day-today actions being performed in line with our Codes of Responsibility and Group Policies. By individually and collectively committing to our Group values and codes, we will be able to make a difference together and help Britain prosper.
We’re also committed to employing a diverse and inclusive workforce, reflective of the customers and communities we serve – where all our colleagues can be themselves and succeed on merit.
We’re proud to have received the following industry recognition: ‘Stonewall Top Private Sector Employer’, ‘Top10 Employer for Working Families’, ‘The Times Top 50 Employer for Women’ and both ‘Gold Standard’ and “Best Workplace Adjustments Process” from the Business Disability Forum – each demonstrating our commitment to the principles of agile working and inclusion for all.
So if this sounds like a culture that you’d like to be a part of then be assured that we’ll welcome your application.