Head of Security Architecture & Consultancy
Join to apply for the Head of Security Architecture & Consultancy role at Handelsbanken
Job Introduction
The role reports to the Head of Information Security, and is a member of the UKTI leadership team, overseeing the design, implementation, and continuous enhancement of the Security Architecture capability, Identity and Access Management capability, and Secure Change Consultancy practices. This role works strategically across IT and the wider Bank to deliver Security improvements, helping our stakeholders manage their Information Security risk effectively and influencing good security outcomes.
Main Responsibilities
* Forge strong partnerships with Engineering/Development teams, including “3-in-a-box,” to integrate Security and ensure security is considered as part of the project and agile change lifecycles with risks identified, assessed, and managed.
* Maintain a strong framework of controls, methods & tools for security in IT change integrated into the wider IT Change Management framework, architecture framework, Release management process, and Group frameworks.
* Establish indicators and maintain objective oversight of Security Posture in the Change workstreams, including analysis of residual governance, risk, and control position.
* Maintain oversight and influence improvement of security controls embedded into the Change Framework.
* Ensure transparency (aligned to the ORMF) in the management of Security and Privacy risks within Change workstreams and transparency on Operational Risk accepted into Run.
* Take responsibility to identify, diagnose, establish facts and solution complex technical and organisational security issues, ensuring documented transparent risk management. Receive and resolve complex technical and organisational escalations.
* Influence at Roadmap steerco and risk committees to achieve good security outcomes.
* Mobilise the Security Architecture practice, with a robust plan to fully operationalise and embed, aligned to wider Bank and Group architecture teams. Act as an authoritative architectural escalation point.
* Maintain and operate a robust community of practice for security consultants embedded into change projects. Ensure headcount and skills demand and supply, training and development of staff.
* Represent the UK Information Security Team at Governance Committees, and coordinate regular reporting and submissions to ensure and support the Committee’s oversight.
* Maintain close relationships with stakeholders such as UK Technology, Group Security, Risk, Project Demanders, and Internal Audit.
* Risk and Issue Management.
* Stakeholder Management, including but not limited to, the Project Sponsor; in some cases C-level, and other Project Responsible Business stakeholders of varying levels of seniority.
* Presentation at senior management committees up to C-level on progress and issues.
* Ensuring that the end-to-end solution follows the Bank’s architecture and Security Directives.
* Support wider team embedding risk culture, ensuring management are aware of the risk and control environment they have responsibility for.
* Provide specialist Information Security advice and challenge on mitigation plan.
* Actively promote and ensure adherence to the Bank's Risk Management framework (including sub-frameworks) and relevant risk and compliance policies and procedures, ensuring timely and appropriate escalation of concerns to relevant senior stakeholders.
Ideal Candidate
* Holds or has the capability to attain appropriate external qualifications, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), etc.
* Has strong financial services industry knowledge through previous experience, professional groups, etc.
* Significant experience in a senior role responsible for security architecture.
* IT Project or Programme Management – specific experience incepting, defining, obtaining buy-in and implementing large scale & complex Security transformation & remediation activities.
* Specific experience managing Security transformation & remediation activities at a senior level, including excellent stakeholder management.
* Good understanding of IT Risk Management and practical experience applying it to significant Change projects.
* Significant experience defining security control frameworks for change, achieving buy-in and understanding, implementing, and measuring.
* Experience of IT & Security in a Financial Services organisation, and an understanding of regulatory requirements.
* Ability to establish facts, develop & document potential solutions and ensure views are aligned with pragmatic transparent risk management.
* Ability to build and deploy matrix teams empowered to act autonomously but aligned to core methods and controls.
* Take long-term strategic ownership of security capabilities within area of responsibility defining and agreeing current and target state and multi-year plans to achieve them.
* Be able to take responsibility and act autonomously.
* Influence decision-making to surface and enable resolution of issues and risks across a wide range of stakeholders, up to and including senior management/executive.
* Be able to interact proactively and confidently with all areas of business, including senior management and product owners.
* Pragmatic, and effectively balances risk and control requirements with commercial drivers and customer outcomes.
* Be able to plan, organise and prioritise tasks and projects, relating progress and costs to anchors such as the Information & Cyber Security Strategy and UKTI Business Plan.
* Have the ability to solve problems creatively and effectively, build business cases and influence direction.
* Excellent verbal and written communication skills.
* The ability to build effective networks with stakeholders, both internally and externally.
* A desire to continually improve the quality of services and products delivered to customers, and the quality and pace of delivery.
Company Information
Handelsbanken is a relationship bank with a decentralised way of working, a strong local presence thanks to a nationwide network of branches, and a long-term approach to customer relations. Each Handelsbanken branch operates as a local business enabling it to make decisions at a local level and provide a bespoke service. The focus is always on the need of the individual customer and not on the sale of specific products.
We are embarking on an exciting Business Transformation journey. This transformation will significantly enhance our technology systems, processes, and services, bringing evolution to our ways of working. Join us in this transformative journey, where your dedication, adaptability, and commitment will play a crucial role in shaping the future of banking for our valued customers.
The Bank is deeply committed to embedding good equality and diversity practice into all of our activities. This is so that we are an inclusive, welcoming, and inspiring place to work that encourages everyone to apply, regardless of socio-economic background, age, disability, pregnancy and/or parental status, race (including colour, nationality, and ethnic or national origin), veteran status, marital and civil partnership status, religion or belief, sex, gender reassignment, or sexual orientation.
What is in it for you?
* We have a wide range of learning and development available, empowering and enabling our colleagues to take ownership of their own development.
* Competitive Salary and an extensive range of benefits is provided, including private medical insurance, income protection, and life assurance.
* A market-leading pension contribution of 15% paid by the bank, which can be invested in a wide range of funds (including ESG and Shariah funds).
Application next steps
Your journey with us begins once you have submitted your application. One of our Handelsbanken recruiters will be reviewing your details and will later organise a phone conversation if you match the role requirements. If there is a mutual fit, we will extend an invitation for you to participate in an interview.
How can we support you to be your best self? Our Talent Acquisition team will be happy to provide support e.g. if you need additional time to prepare for an interview or you have any requirements for any part of the interview/hiring process – just let us know by email uk_talent@careers.handelsbanken.co.uk.
#J-18808-Ljbffr