CrawlJobs Logo

Controls Professional - Digital Security

barclays.co.uk Logo

Barclays

Location Icon

Location:
United Kingdom , London

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Join us as a Controls Professional - Digital Security at Barclays where you'll be primarily responsible for managing digital channel risk and controls, ensuring an effective and compliant control environment. You will be interpreting regulatory and risk requirements, embedding security and cyber-crime controls into the platform, and owning features to ensure they are secure by design. You will work closely with product, technology, fraud, risk, feature and other teams to balance effective risk management with continuous improvement of the customer experience.

Job Responsibility:

  • Assess the integrity and effectiveness of the banks internal control framework to support the mitigation of risk and protection of the banks operational, financial, and reputational risk
  • Knowledge of business areas, products, processes and platforms to be able to assess risk
  • Collaboration with various stakeholders across the bank and business units to improve overall control effectiveness through detailed documentation of control assessments, procedures, and findings
  • Identification and investigation of potential weaknesses and issues within internal controls to promote continuous improvement and risk mitigation aligned to the bank’s control framework, prioritised by its severity to disrupt bank operations
  • Development of reports to communicate key findings from risk assessment including control weaknesses and recommendations to control owners, senior management, and other stakeholders
  • Execution of reviews to determine the effectiveness of the bank's internal controls framework aligned to established and evolving policies, regulation, and best practice
  • Implementation of adherence to the Barclays Controls Framework and set appropriate methodology of assessing controls against the Controls Framework

Requirements:

  • Great leadership and influencing skills, with the ability to lead and motivate virtual teams to deliver features in a federated environment
  • Excellent stakeholder management, negotiation and collaboration skills, working effectively across cyber, fraud, technology, product owners and feature teams
  • Solid understanding of digital technologies, including how the app operates, with solid knowledge of cyber security and fraud risk
  • Previous experience in working with senior stakeholders, including Directors, and producing clear presentations and board-level papers supported by great communication skills
  • Proven technical background with expertise in technology, cyber and fraud domains
  • Technical product expertise, with the ability to translate regulatory and risk requirements into secure, customer-focused platform features

Nice to have:

  • Good understanding of Identity and Access Management (IAM) principles and controls
  • CISSP or equivalent security certification
  • CISM accreditation or similar risk and information security qualification
  • Knowledge of AI and emerging technologies is highly beneficial
What we offer:
  • Hybrid working
  • Structured approach to hybrid working with fixed 'anchor' days
  • Supportive and inclusive culture and environment
  • Commitment to flexible working arrangements
  • Encouragement to embrace mobility and explore operations to build career
  • Opportunity to learn from a globally diverse mix of colleagues

Additional Information:

Job Posted:
January 16, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Barclays - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Controls Professional - Digital Security

Cyber Security Specialist (GRC)

As a Cyber Security Specialist, you will be integrated into the Portugal Cyber S...
Location
Location
Portugal , Lisboa
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree, professional qualification or relevant experience in Technology Security
  • Experience in cyber security risk management, governance and control frameworks
  • Experience supporting risk registers, control assessments, audits or assurance activities
  • Knowledge of information security and risk management standards (ex: ISO/IEC 27001, NIST, COBIT)
  • Strong understanding of cyber security threats and ability to assess business and operational impact
  • Experience working with policies, standards, controls and compliance requirements
  • Strong communication skills, with the ability to explain cyber risks and control gaps in clear business language
  • Ability to work effectively across technical and non‑technical stakeholders, balancing security, risk and business needs
  • Fluency in the English language
Job Responsibility
Job Responsibility
  • Integrated into the Portugal Cyber Security Governance, Risk & Control function, with responsibility for ensuring that cyber security risks are identified, assessed, governed and managed within Vodafone’s risk tolerance
  • Contributing to the three main areas: Cyber Risk Management, Security Governance and Control Assurance
  • Act as a Cyber GRC Subject Matter Expert to enable technical and business teams to operate Vodafone products and services in a secure and compliant manner, with strong focus on cyber risk, policy adherence and control effectiveness
  • Ensuring that cyber security risks are properly identified, assessed, governed and managed, that security controls are effectively implemented and evidenced, and that all governance processes supporting those controls are in place, in line with Vodafone Group cyber security strategy and local market technology and business priorities
  • Follow up on risks, controls and remediation actions throughout their lifecycle, ensuring proper understanding of cyber security requirements, analysing, classifying and prioritising cyber risks according to business context, and supporting informed risk decisions
  • Report to the Cyber Security GRC Team Lead in Portugal and be an active part of the local market Cyber Security team, supporting effective collaboration with local structures such as Network, Digital & IT, Secure by Design, Cyber Defence, Corporate Security, Privacy, Legal, Risk and Compliance, among others
What we offer
What we offer
  • Hybrid Work Model - Flexible hybrid work model with 8-10 in-office days per month, managed by team leaders
  • Vodafone Products and Services - Employees get a mobile phone, free communication plan, data card, and various discounts on services and products
  • Recognition - Recognition programs for innovative, creative, high-potential employees and exemplary behaviors
  • Health and Well-being - Well-being Program offers nutrition and psychological consultations, webinars, workshops, and discounts on various services and products
  • Learning - Access to Communities of Practice and a customizable digital training platform with high-quality content (namely Harvard Business Publishing and Skillsoft)
  • Local and International Mobility - Internal recruitment with local and international rotation opportunities across departments and roles
Read More
Arrow Right

Internal Control Executive - Technology

At Vodafone, we’re not just shaping the future of connectivity for our customers...
Location
Location
Türkiye , İstanbul
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Engineering, Computer Science, Information Systems, Business IT or a related discipline
  • Solid academic foundation in information systems, digital technologies, governance, risk or compliance domains
  • Professional certifications in IT audit, information security, risk management or governance (e.g., CISA, CRISC, CISSP, ISO Lead Auditor/Implementer, COBIT) are strong assets
  • Minimum five (5) years of experience in internal control, IT audit, technology risk, GRC, fintech compliance or digital governance roles
  • Hands-on experience in highly digitalized, regulated environments such as telecommunications, banking, fintech or large-scale enterprise operations
  • Demonstrated ownership of IT General Controls (ITGC), application controls and system-level control frameworks
  • Experience in embedding controls into ERP, CRM, billing, network OSS/BSS, payment and data platforms
  • Strong background in working with cross-functional IT, security, finance, legal and compliance teams
  • Advanced understanding of IT General Controls (access management, segregation of duties, change management, SDLC governance, logging & monitoring, backup and disaster recovery)
  • Advanced knowledge of application-level controls within ERP, CRM, billing, payment and customer lifecycle systems
Job Responsibility
Job Responsibility
  • Execute and maintain Vodafone Turkey’s technology internal control framework
  • Embed internal controls into system designs, workflows and operating procedures
  • Ensure alignment with COSO, COBIT and Vodafone Group governance standards
  • Access and privileged access management
  • Segregation of duties
  • Change management and SDLC governance
  • Logging, monitoring and audit trail integrity
  • Backup, disaster recovery and system availability
  • Data protection and privacy controls
  • Work with IT, security, network, digital and finance teams to ensure effective control operation
What we offer
What we offer
  • Vflexy: Flexible Benefits Program
  • Hybrid working kit
  • Ergonomic kit allowance
  • Digital meal voucher
  • Flexible transportation allowance
  • Employee assistance hotline & counselling
  • Comprehensive and flexible private health insurance
  • Discounted price deals for wide range of products & services
Read More
Arrow Right

SOC Analyst L2

Location
Location
Egypt , Nasr City
Salary
Salary:
Not provided
el-delta.com Logo
El Delta Electronic Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Technology, or related field
  • CCNA/CCNP security, Certified Forensic Computer Examiner (CFCE), Certified Information Systems Security Professional (CISSP) with a focus on digital forensics, or other relevant advanced security certifications highly preferred
  • 3+ years of experience in SOC Analyst role
  • Strong understanding of computer operating systems (Windows, Linux, macOS)
  • Experience with digital forensics and analysis tools and software (e.g., EnCase, FTK, Cellebrite)
  • Experience in advanced threat hunting, and incident response
  • Knowledge of common attack vectors (e.g., phishing, malware, ransomware)
  • Understanding of threat intelligence feeds and data sources
  • Experience with security orchestration and automation platforms (SOAR)
Job Responsibility
Job Responsibility
  • Conduct in-depth analysis of security alerts and incidents escalated from L1
  • Utilize advanced threat intelligence and hunting techniques to identify and investigate sophisticated threats
  • Perform malware analysis and reverse engineering techniques
  • Investigate and analyze network traffic for malicious activity
  • Develop, maintain, and enrich threat intelligence feeds, indicators of compromise (IOCs), and other relevant threat-related data
  • Lead and coordinate incident response activities, including containment, eradication, recovery, and root cause analysis
  • Develop and implement security playbooks and response procedures
  • Collaborate with other IT teams to remediate security vulnerabilities and implement security controls
  • Conduct in-depth digital forensic investigations on compromised systems and networks
  • Collect, preserve, and analyze digital evidence according to legal and industry best practices
  • Fulltime
Read More
Arrow Right

Sr. Manager, Intellectual Property Security

The Sr. Manager, Intellectual Property Security is responsible for maintaining t...
Location
Location
United States , Burbank
Salary
Salary:
121500.00 - 151000.00 USD / Year
funko.com Logo
Funko
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years professional experience in IP protection, brand security or related field
  • Minimum 5 years in entertainment/licensing industry
  • Bachelor's Degree, MBA, and/or Master’s degree is preferred
  • Experience working with major entertainment studios (Disney. WB, etc.) and/or working in a licensing, retail, or wholesale consumer environment and understanding related IP protection matters
  • Experience in developing technical solutions for data protection such as DLP, digital watermarking, etc
  • Experience evaluating, implementing, and supporting new applications, services, and solutions
  • Experience in developing, implementing, and maintaining trade secret programs across organizations
  • Exceptional communication and influencing skills
  • Experience working with external stakeholders who are both customers and suppliers where there is a commercial relationship to manage
  • Ability to manage large complex projects and to step into projects already in progress, or in need of rescue, and effectively assume a leadership role
Job Responsibility
Job Responsibility
  • Develop in-depth knowledge of Funko’s business model with a focus on licensing, product development and marketing to be able to identify trade secrets associated with licensed assets and the corresponding risk scenarios
  • Responsible for the protection of Funko and its licensors product-related trade secrets and licensed intellectual property from unauthorized distribution
  • Maintain the roadmap to deploy information security controls (process and technology) to mitigate risk scenarios associated with licensing intellectual property
  • Maintain relationships with major entertainment licensors’ security and legal teams to ensure aligned protection strategies
  • Establish and maintain relationships with 3rd party affiliates in connection with enforcement activities
  • Support continuous improvement of safe selling techniques and processes with a focus on growing revenue
  • Maintain security controls for protecting trade secrets and confidential data, including digital assets, throughout the product life cycle
  • Maintain technical solutions to prevent unauthorized distribution of licensor and other confidential data
  • Coordinate with IT and Information Security teams to deploy technology solutions that mitigate licensing-related risks
  • Develop educational materials for employees, vendors and other key stakeholders on proper handling of licensed assets
What we offer
What we offer
  • Competitive compensation package with full benefits
  • 401(K) plan with matching contributions from the company
  • Creative work environment
  • May be eligible for additional discretionary bonuses/incentives, and restricted stock units
  • Fulltime
Read More
Arrow Right

Physical identity domain architect

As part of the strategy to advance our digital and innovative capabilities in ou...
Location
Location
Netherlands , Veldhoven
Salary
Salary:
Not provided
asml.com Logo
ASML
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master degree in Innovation / Technology / Security Management or equivalent
  • 10+ years’ experience with a focus on strategic planning and architecture in physical security and/or identity and access management
  • 5+ years’ experience in leading a team
  • 5+ years’ experience in program / project management
  • Sound understanding of security technologies, techniques and best practices, with a focus on (physical / digital) identity and security
  • Excellent leadership, influencing and interpersonal skills
  • Self-starter mentality, highly-motivated, with a strong work ethic and entrepreneurial mindset
  • Able to lead, develop, motivate and mentor a team of security professionals
  • Able to strategize, develop and implement new concepts and technologies
  • Able to convince others, change management savvy and deal with resistance
Job Responsibility
Job Responsibility
  • Drive strategic planning processes for Physical Identity capabilities, resulting in a multi-year plan and roadmap, including the monitoring thereof
  • Lead and drive innovative and leading edge physical and digital identity initiatives to increase ASML’s resilience to existing and new internal and/or external physical and identity security threats (e.g. identity theft)
  • Translate physical & digital identity concepts and innovations into workable products and services, improving the security, effectiveness and efficiency of physical and digital identity security
  • Create and nurture an internal and external innovation funneling mechanism that ensures ideas are collected, processed, tested and implemented, and align with ASML’s security architecture and capability framework
  • Connect the physical and digital identity spaces and develop synergies and holistic solutions that seamlessly integrate
  • Develop and maintain relationships with relevant internal and external stakeholders
  • Build, lead, develop, motivate and mentor a team of innovation / security professionals
  • Fulltime
Read More
Arrow Right

Chief Information Security Officer

Location
Location
Egypt , New Cairo
Salary
Salary:
Not provided
ethicshr.com Logo
Ethics HR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s/Master’s degree in Information Security, Computer Science, Engineering, or related field from a reputable university
  • 12-15+ years of progressive experience in information security, cybersecurity, or technology risk roles, preferably in banking or financial services
  • Strong knowledge of Central Bank of Egypt cybersecurity frameworks, digital banking guidelines, and financial-sector regulations
  • Deep understanding of security technology, network security, IAM, application security, and SOC operations
  • Experience overseeing incident response, security architecture, and enterprise-wide risk management
  • Professional certifications preferred (CISSP, CISM, CRISC, CCSP or equivalent)
  • Strong knowledge of international standards like ISO 27001/27002 and global best practices for financial data protection
  • Strong leadership, communication, and stakeholder management skills with the ability to influence senior executives and steer enterprise-level decisions
Job Responsibility
Job Responsibility
  • Define and execute the bank’s enterprise information security strategy in alignment with the business and regulatory requirements
  • Establish security governance frameworks, policies, and standards across all technology and business functions
  • Oversee cybersecurity programs including threat detection, incident response, vulnerability management, and security operations
  • Lead enterprise-wide technology risk management, ensuring effective identification, assessment, and mitigation of risks
  • Ensure full compliance with Central Bank of Egypt cybersecurity mandates, digital banking requirements, and data protection regulations
  • Develop and manage the Cloud Security Architecture (e.g., AWS, Azure) strategy, ensuring secure configuration and compliance for all digital infrastructure
  • Establish Security Metrics and Key Risk Indicators (KRIs) for regular reporting to the Board and Executive Committee, demonstrating the effectiveness of the security program
  • Implement and govern API Security standards and best practices to protect data exchange within the digital ecosystem and external partners
  • Formally manage and sign off on outsourcing security agreements (third-party risk) to meet specific CBE requirements for external service providers
  • Coordinate internal and external audits, penetration tests, and security assessments
Read More
Arrow Right

Security Analyst - SDR Security Operations

Meta is seeking a Security Analyst to join the Global Security Operations team. ...
Location
Location
United States , Menlo Park
Salary
Salary:
137000.00 - 196000.00 USD / Year
meta.com Logo
Meta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master's degree in Computer Science or related technical field, or equivalent experience in cyber security
  • 5+ years of professional experience in a Security Operations Center, Incident Response, or relevant investigative role
  • 5+ years of experience navigating and understanding Windows, macOS, and Linux operating systems
  • Knowledge of networking technologies, specifically TCP/IP and related protocols
  • Experience analyzing network and host-based security events
  • Professional experience using a wide range of investigative tools including EDR, SIEM/SOAR, UBA
  • Professional experience with database query languages (e.g., SQL)
  • Professional experience handling digital forensic evidence and developing reports to support internal investigations
  • Experience with attacker tactics, techniques, and procedures
  • Experience making important decisions independently and multi-tasking under pressure
Job Responsibility
Job Responsibility
  • Investigate and respond to external and internal cybersecurity threats in a timely manner while communicating clearly and proactively until remediation
  • Drive changes to processes that scale across teams and regions and affect organizations outside Security
  • Act as an escalation point for Tier1 investigations, contribute to the development of the Tier1 capability and related service level objectives
  • Document security investigations and produce high quality and accurate reports for a wide range of stakeholders
  • Collaborate with Security Engineers and cross-functional teams to investigate and remediate large scale security incidents
  • Support security incidents root cause analysis, identify control gaps and recommend mitigation strategies
  • Collaborate with cross-functional teams to drive improvements to security policies, processes and tools
  • Improve the effectiveness and efficiency of the Security Operations and Incident Response team including development and refinement of processes and technical capabilities
  • Understand and support requirements of internal and external stakeholders, regulators, and auditors
What we offer
What we offer
  • bonus
  • equity
  • benefits
  • Fulltime
Read More
Arrow Right

Senior Consultant - CRM

As a Senior Consultant in Unit 42 you will have the opportunity to work across a...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities
  • Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms
  • Experience in security operations design, engineering and/or analysis and investigations, ideally in complex environments, with security event correlations across a variety of sources i.e. cloud, network, endpoint, logs
  • Ability to perform detailed assessments, identify areas for improvement and make recommendations to transform an organisation's cyber security operations and capabilities to better protect, detect and rapidly respond to modern threats
  • Demonstrated experience in improving an organisations security operations capabilities such as improvements in asset visibility, threat detection capabilities, automation techniques, case management, enablement of compliance and regulatory requirements
  • Experience in conducting threat hunting and/or compromise assessments to identify active or dormant indicators of compromise (IoCs) or evidence of unknown threats within an organisations digital environment
  • Relevant industry certifications including GIAC Defensible Security Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP
  • Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC
  • 3+ years of experience performing cloud security advisement and risk assessments based upon industry-accepted standards
  • Hands-on experience with a cloud hosting provider (AWS, Azure, GCP, etc)
Job Responsibility
Job Responsibility
  • work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security
  • deliver the best consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape
  • Fulltime
Read More
Arrow Right