CrawlJobs Logo
Barclays Logo Barclays · IT - Administration

Director - Cyber Controls Officer

United Kingdom, Knutsford · Job Posted June 10, 2026
Apply Position
Job Link Share

Job Description

To act as a Cyber & Information Security subject matter expert, providing controls leadership and oversight across Cyber and the Chief Information Security Office (CISO). The role is responsible for assessing and enhancing the effectiveness of the Bank’s cyber control environment, ensuring cyber risks are managed within appetite, aligned to regulatory expectations, and compliant with Group Policy to protect the Bank from operational, financial and reputational impact.

Job Responsibility

  • Act as the Cyber SME for controls, providing expert oversight and challenge across Cyber & Information Security and CISO on control effectiveness
  • Lead and support core cyber risk and control processes (e.g. RCSA, Interim RCSA, Issue Management, Key Indicators, Standards adherence), ensuring outputs are risk-based, consistent and aligned to regulatory expectations
  • Analyse and challenge cyber risk issues and control weaknesses, working with control owners to define and track sustainable remediation actions
  • Maintain end-to-end visibility of the cyber control environment, identifying emerging themes, systemic risks and areas requiring escalation to senior governance forums
  • Support delivery and oversight of key cyber programmes (e.g. Cyber Excellence Programme, Risk Reduction Plan), ensuring clear linkage to control outcomes and risk reduction
  • Support regulatory meetings and interactions, including preparation of materials, providing SME input, and contributing to responses to regulatory requests and findings
  • Engage with 2LoD, Internal Audit and regulators on cyber-related matters, supporting reviews and ensuring timely, high-quality responses to findings
  • Maintain up-to-date knowledge of cyber threats, regulatory developments and industry best practice, applying this to strengthen the cyber control environment

Requirements

  • Significant experience in Cyber Security, Information Security Risk, or Cyber Controls, ideally within a large, complex financial services organisation
  • Strong understanding of cyber risk and control processes (e.g. RCSA, Interim RCSA, Issue Management, Key Indicators) and their practical application
  • Good knowledge of cyber security frameworks and standards (e.g. NIST, ISO 27001) and their implementation in enterprise environments
  • Proven ability to assess cyber control effectiveness, identify root causes and drive sustainable remediation of control weaknesses
  • Experience engaging and influencing senior stakeholders across Cyber, Risk and Control functions, providing credible challenge in a matrix environment
  • Strong analytical and communication skills, with the ability to translate complex cyber risks into clear, concise and actionable insight for senior audiences
Barclays - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Director - Cyber Controls Officer

8 matching positions

Senior Risk Relationship Manager

Hope for Justice is a charity working to bring freedom from human trafficking an...
Location
Location
United Kingdom
Salary
Salary:
44500.00 GBP / Year
hopeforjustice.org Logo
Hope for Justice and Slave-Free Alliance
Expiration Date
June 26, 2026
Flip Icon
Requirements
Requirements
  • Lead the strategic and operational development of the organisation’s risk framework, ensuring alignment with ISO 31000 and organisational context
  • Coordinate appropriate identification and management of risk across all senior leadership and accountable roles, ensuring coverages of all 12 classifications of risk per the HfJ framework: (Security
  • Safeguarding
  • Health & Safety
  • Financial
  • Corruption
  • People & Culture
  • Cyber, Information and IT
  • Governance
  • Legal & Compliance
Job Responsibility
Job Responsibility
  • Risk Management
  • Risk Governance
  • Strategy Integration
  • Incident & Crisis Management
  • Data Protection Compliance & Governance
  • Data Protection Impact Assessments (DPIAs)
  • Advisory & Support
  • Training & Awareness
  • Risk Function
What we offer
What we offer
  • 28 days annual leave plus bank holidays (pro rata)
  • 1 day Marriage Leave
  • Birthday Day
  • Enhanced employer pension contributions
  • Company sick pay
  • Enhanced maternity and paternity pay
  • Access to our Employee Rewards Platform, providing discounts and offers for well-known retailers
  • Free, confidential Employee Assistance Programme for staff and their family
  • Professional development opportunities
  • Professional memberships paid
  • Fulltime
Read More
Arrow Right

Assistant Director of Technology Operations and Security

The Assistant Director is accountable for delivering secure, reliable, cost‑effe...
Location
Location
United Kingdom , London
Salary
Salary:
86652.00 - 108462.00 GBP / Year
allenlane.co.uk Logo
Allen Lane
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A strong digital and ICT leadership background with the credibility to lead enterprise-scale technology and experience transformation
  • A proven ability to look outward – designing services around residents, communities and partners rather than organisational boundaries
  • Experience leading complex change programmes that balance ambition with operational stability
  • Strong Background in cyber security, information governance and incident recovery
  • Practical experience of AI, automation and modern collaboration platforms in live service environments
  • A track record of building inclusive, high-performing teams and inspiring people through change
  • Strategic confidence to shape vision, influence at the top table and turn opportunity into delivery
  • Confidence operating at executive and political level, shaping strategy and advising on risk and investment
  • A strategic mindset that connects long-term ambition to practical delivery in a public sector context
Job Responsibility
Job Responsibility
  • Provide authoritative leadership for stable, high‑performing technology operations, setting the direction, standards and service expectations for end‑to‑end IT operations (in‑house and commissioned)
  • Be accountable for cyber security and technology risk, establishing and enforcing the council’s cyber security controls, assurance regime
  • Own the resilience and capacity of infrastructure and networks, ensuring availability, performance and recoverability for business‑critical services
  • Set and govern a clear and coherent enterprise architecture for technology operations and infrastructure, defining standards that enable interoperability, security‑by‑design and alignment to organisational priorities
  • Lead compliance and assurance across technology operations, ensuring the council meets information governance, data protection and regulatory requirements by setting controls, monitoring adherence, addressing non‑compliance, and partnering with the Data Protection Officer and other assurance functions
  • Lead the commercial and supplier strategy for technology operations and cyber security, holding suppliers to account for outcomes, value for money and service performance through robust governance, KPIs/SLAs, and active contract and relationship management
  • Be accountable for financial stewardship and investment decisions across technology operations and cyber security, managing and controlling the operational technology budget (circa £7m) by setting budgets and forecasts, prioritising resources, approving expenditure within delegated limits, and ensuring robust business cases and benefits realisation for investment
  • Support the transition from our current shared infrastructure arrangements to a fully internally led model, ensuring our systems support, not constrain, service excellence
  • Support a Microsoft led digital strategy annually, keeping pace with AI innovation, user need and organisational priorities
  • Act as a member of Technology Senior Leadership, advising the Chief Executive Office, Corporate Management Team and Cabinet Members with confidence and clarity
What we offer
What we offer
  • JNC Benefit of £3,503
  • Fulltime
Read More
Arrow Right

Global Head of Cyber Risk and Compliance

The Technology & Cyber Compliance and Operational Risk Office (TCCORO) at Citi i...
Location
Location
United States , Irving, Texas, United States, New York, New York, United States
Salary
Salary:
250000.00 - 500000.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 20+ years' experience in technology risk and/or cyber risk management in the banking/financial services industry, or related field, with at least 5+ years in 2nd or 3rd line senior leadership positions
  • Subject matter expert in technology risk and/or cyber risk management principles and practices across various information system architecture and engineering domains
  • Proven experience in managing complex risk portfolios and developing strategic risk management frameworks for large organizations
  • Robust understanding of operational risk management frameworks, industry standards, regulatory requirements, and risk mitigation practices
  • Experience managing and overseeing large remediation and transformation programs to achieve intended results
  • Extensive experience in effective written and verbal communication with executive audiences including Boards
  • Experienced risk challenger who balances risks vs. rewards aligned with corporate risk culture
  • Understanding of Citi products and services and downstream impacts of technology risk and/or cyber risk strategy
  • Professional certifications in either technology risk and/or cyber risk preferred, including: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), ERM, CET, ISO27001, COBIT, TOGAF, or CRI
  • In-depth, working knowledge of banking technologies, fraud, cybercrime detection and countermeasures, encryption, data retention, as well as information security support for segregation of duties, application development, network and systems operation, testing and vendor management
Job Responsibility
Job Responsibility
  • Oversight and challenge of the cybersecurity incident response programs
  • Oversight of the security operations center (SOC) and cybersecurity fusion center (CSFC)
  • Oversight of cybersecurity penetration testing and red-team operations
  • Oversight of the Chief Information Security Office (CISO), including the review of the effectiveness of the controls, standards and programs across the enterprise
  • Implementation of guidance for overseeing Emerging Technology and Operational Risks, in compliance with OCC Heightened Standards
  • Able to present and lead discussions with key Regulators, internal and external auditors, as well the Board of Directors and the Risk and Audit sub-committees
  • Governance and Oversight of security risks impacting the business and technology
  • Support in the development of Cyber Policy and Standards
  • Oversight of Key Operational Risks and related indicators and thresholds
  • Challenge of Cyber Risk Self Assessments
What we offer
What we offer
  • Discretionary and formulaic incentive and retention awards
  • medical, dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • Fulltime
Read More
Arrow Right

Global Chief Information Security Officer

The Global Chief Information Security Officer (GCISO) will lead Allied Universal...
Location
Location
United States , Irvine
Salary
Salary:
275000.00 - 350000.00 USD / Year
aus.com Logo
Allied Universal®
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in computer science, Information Technology, cybersecurity, or a related field
  • Minimum of fifteen (15) years of progressive experience in cybersecurity
  • Minimum of seven (7) years in a senior management role in an information security function
  • Experience in managing, responding to, and mitigating cyber incidents
  • Experience or familiarity with government contracting and public and private company cybersecurity reporting requirements
  • Hands-on cyber incident response coordination and oversight experience
  • Expertise in risk-based frameworks (NIST CSF, ISO 27001, SOC 2, CMMC, NIST 800-171) and familiarity with applicable regulatory regimes (SEC, GDPR, state breach laws, etc.)
  • Proven ability to engage with CEO, Board of Directors, and Executive Team on cybersecurity strategy and governance
  • Ability to operate effectively as both strategist and practitioner, a player-coach who drives global cybersecurity direction while engaging hands-on to guide, mentor, and resolve complex technical and operational challenges
  • Strong leadership skills as well as the ability to work and communicate (verbal, written, and interpersonal) effectively with other leadership and their teams
Job Responsibility
Job Responsibility
  • Develop and execute a global, risk-based cybersecurity strategy and program aligned with Allied Universal's business objectives
  • Establish, communicate, and oversee governance of enterprise-wide cybersecurity policies, standards, and controls that are appropriate for the company's diverse global operations
  • Lead, mentor and manage Regional Cybersecurity Leaders to promote consistency, accountability, and operational effectiveness across all regions
  • Define and monitor key risk indicators, cybersecurity metrics, and maturity objectives to inform executive decision-making and drive ongoing program improvement
  • Oversee global monitoring, detection, and response capabilities that provide 24×7 visibility into potential cyber risks and support timely containment activities
  • Identify and assess emerging threats, technologies, and vulnerabilities to support informed planning and risk mitigation efforts
  • Provide recommendations regarding cybersecurity investments and resource allocation, helping prioritize efforts based on risk, business impact, and value
  • Foster a culture of cybersecurity awareness, ownership, and accountability across all functions and geographies
  • Coordinate, develop, and implement programs designed to train Allied Universal's workforce regarding the company's cybersecurity requirements, including applicable cybersecurity laws and requirements and responding to evolving cybersecurity threats
  • Evaluate emerging threats and vulnerabilities, driving continuous improvement of the company's cybersecurity posture as appropriate
What we offer
What we offer
  • Medical, dental, vision, supplemental income plan with a company match, basic life, AD&D, and disability insurance
  • Eight paid holidays annually, five sick days, and four personal days
  • Executive Flex Vacation Plan
  • Fulltime
Read More
Arrow Right

Global Chief Information Security Officer

The Global Chief Information Security Officer (GCISO) will lead Allied Universal...
Location
Location
United States , Irvine
Salary
Salary:
275000.00 - 350000.00 USD / Year
aus.com Logo
Allied Universal®
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in computer science, Information Technology, cybersecurity, or a related field
  • Minimum of fifteen (15) years of progressive experience in cybersecurity
  • Minimum of seven (7) years in a senior management role in an information security function
  • Experience in managing, responding to, and mitigating cyber incidents
  • Experience or familiarity with government contracting and public and private company cybersecurity reporting requirements
  • Hands-on cyber incident response coordination and oversight experience
  • Expertise in risk-based frameworks (NIST CSF, ISO 27001, SOC 2, CMMC, NIST 800-171) and familiarity with applicable regulatory regimes (SEC, GDPR, state breach laws, etc.)
  • Proven ability to engage with CEO, Board of Directors, and Executive Team on cybersecurity strategy and governance
  • Ability to operate effectively as both strategist and practitioner, a player-coach who drives global cybersecurity direction while engaging hands-on to guide, mentor, and resolve complex technical and operational challenges
  • Strong leadership skills as well as the ability to work and communicate (verbal, written, and interpersonal) effectively with other leadership and their teams
Job Responsibility
Job Responsibility
  • Develop and execute a global, risk-based cybersecurity strategy and program aligned with Allied Universal's business objectives
  • Establish, communicate, and oversee governance of enterprise-wide cybersecurity policies, standards, and controls that are appropriate for the company's diverse global operations
  • Lead, mentor and manage Regional Cybersecurity Leaders to promote consistency, accountability, and operational effectiveness across all regions
  • Define and monitor key risk indicators, cybersecurity metrics, and maturity objectives to inform executive decision-making and drive ongoing program improvement
  • Oversee global monitoring, detection, and response capabilities that provide 24×7 visibility into potential cyber risks and support timely containment activities
  • Identify and assess emerging threats, technologies, and vulnerabilities to support informed planning and risk mitigation efforts
  • Provide recommendations regarding cybersecurity investments and resource allocation, helping prioritize efforts based on risk, business impact, and value
  • Foster a culture of cybersecurity awareness, ownership, and accountability across all functions and geographies
  • Coordinate, develop, and implement programs designed to train Allied Universal's workforce regarding the company's cybersecurity requirements, including applicable cybersecurity laws and requirements and responding to evolving cybersecurity threats
  • Evaluate emerging threats and vulnerabilities, driving continuous improvement of the company's cybersecurity posture as appropriate
What we offer
What we offer
  • Medical, dental, vision, supplemental income plan with a company match, basic life, AD&D, and disability insurance
  • Eight paid holidays annually, five sick days, and four personal days
  • Executive Flex Vacation Plan
  • annual bonus
  • equity package
  • Fulltime
Read More
Arrow Right

IT Director

The Group IT Director is a Senior Leadership role with clear accountability for ...
Location
Location
United Kingdom
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in a senior IT leadership role, within a multi-site or international organisation
  • Strong background in IT infrastructure, end-user computing and service management
  • Demonstrable experience leading cyber security strategy and managing risk at an organisational level
  • Experience owning and managing IT budgets and complex supplier relationships
  • Strong operational mindset with the ability to set direction and ensure disciplined execution
  • Clear, confident leadership style that builds trust and accountability at all levels
  • Commercially focused, with a practical approach to investment, cost control and value
  • Calm and resilient under pressure, with a proactive approach to risk and problem solving
Job Responsibility
Job Responsibility
  • Set and deliver a clear IT agenda that supports Ventrica’s business plans, growth ambitions and operational priorities
  • Ensure reliable, scalable and cost-effective infrastructure that supports efficient ways of working for users across the UK and South Africa, both office-based and remote
  • Ensure core infrastructure, end-user computing, collaboration tools and business systems are robust, standardised and well governed
  • Lead pragmatic technology roadmaps, ensuring systems are fit for purpose, efficient and future-ready
  • Lead our cyber security strategy, embedding security-by-design across all systems and processes
  • Own policies, controls and governance for information security, data protection, disaster recovery and business continuity
  • Proactively manage cyber risks, vulnerabilities and incidents, working closely with senior stakeholders
  • Ensure compliance with relevant standards, regulations and client security requirements
  • Lead IT Support and Service Desk teams to deliver a consistent, reliable and efficient service to colleagues
  • Define and manage service standards, KPIs and controls to drive reliability, efficiency and continuous improvement
Read More
Arrow Right

Director of Information Technology

Industrial Defender is seeking a seasoned Director of Information Technology to ...
Location
Location
United States , Foxboro
Salary
Salary:
150000.00 - 175000.00 USD / Year
industrialdefender.com Logo
Industrial Defender
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Technology, Computer Science, or related field
  • 7–10+ years of progressive IT experience, including 3+ years in a leadership role
  • Experience managing data center operations, network infrastructure, and enterprise security
  • Strong knowledge of SOC 2 and related compliance frameworks
  • prior audit management required
  • Proven ability to manage third-party vendors and service providers
  • Strong understanding of cybersecurity best practices and IT risk management
  • Excellent communication, leadership, and interpersonal skills
  • Ability to work on-site in Foxboro, MA
Job Responsibility
Job Responsibility
  • Oversee all aspects of Industrial Defender’s local and colocated data centers, ensuring availability, performance, and security
  • Manage the design, implementation, and maintenance of IT systems including servers, networks, communication systems, storage, hardware, and cloud resources
  • Maintain and optimize endpoint management, identity access management, and enterprise security tooling
  • Ensure business continuity and disaster recovery plans are current, tested, and effective
  • Own and maintain Industrial Defender’s SOC 2 compliance program, including documentation, evidence collection, control implementation, and coordination with external auditors
  • Define, implement, and enforce IT policies, standards, and procedures aligned with organizational and regulatory requirements
  • Protect Industrial Defender’s web presence, office IT environment, and internal systems from unauthorized access, cyber threats, and vulnerabilities
  • Lead ongoing efforts in vulnerability management, incident response, and cybersecurity best practices
  • Manage all third-party technology relationships, including contract negotiation, performance management, and service delivery outcomes
  • Evaluate new vendor solutions and technologies to support business objectives while optimizing cost and operational efficiency
  • Fulltime
Read More
Arrow Right
New

IT Training Lead

The IT Training Lead will drive technology learning and user adoption across the...
Location
Location
United States , Delray Beach
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in IT training, instructional design, technical enablement, or learning and development
  • Strong knowledge of Microsoft 365
  • Excellent communication, facilitation, and content development skills
  • Ability to translate technical concepts into practical, user-friendly training.
Job Responsibility
Job Responsibility
  • Design, develop, and deliver IT training programs in instructor-led, virtual, and self-paced formats
  • Take lead in the Microsoft Copilot and AI training strategy, including onboarding, advanced use cases, responsible AI usage, and ongoing enablement
  • Partner with IT leadership to support new technology rollouts, system upgrades, and digital transformation initiatives
  • Create and maintain training content, including videos, guides, tutorials, and job aids
  • Identify skill gaps and develop targeted learning solutions to improve adoption and productivity
  • Gather feedback and measure training effectiveness to continuously improve programs.
Read More
Arrow Right