Job Description
Information Security is a core function within RBS's Security and Risk function which sits within Business Services- The team is responsible for managing the Information Security risk across the RBS Group effectively protecting the confidentiality, integrity and availability of data held within the group and by related third parties- There are two teams based in the UK: - A global team who are responsible for Strategy, Policy, Penetration Testing, Forensics and Technical Monitoring
- A divisionally facing IS delivery team focused on policy compliance and the design, implementation and assessment of information security controls
This role falls into the global team and forms a key part of information security within RBS in the future-
The role holder will support the development of the Information Security strategy for the RBS Group- This will involve forming relationships with businesses and technology areas to understand their risks and issues in order to influence the RBS Group Information Security strategy and how it will be implemented- IS fields where knowledge and experience would be most valuable are: user access; training and awareness; data classification-
Requirements
Skills Required - Influencing at senior organisational levels
- Working with a broad range of business and technology units across the RBS Group or other Global organisations
- Excellent communication skills - written and verbal
- Excellent stakeholder management skills
- Complex project management experience
- Understanding of wide range of information security risks and controls
Desirable - Proven experience in driving Information Security change
- Experience of a Security and Risk function
- Good understanding and proven track record of working in Information Security within the Financial Services industry
- Relevant professional qualifications
- Experience of leading large scale information security programmes
Responsibilities
- Engaging with Information Security senior managers, leaders and business / technology stakeholders to support the development of Information Security strategy and implementation plan globally
- Manage change in the development and implementation of Information Security priorities, systems and investments
- Manage strategic Information Security change programmes to implement a robust Information Security control environment including attending and contributing to appropriate governing bodies
- Prepare business cases to secure funding for major Information Security change programmes
- Identify and address cross Business/Region Information Security issues relating to strategy implementation
| 
