People, Person, Clinic, Doctor, Lab Coat, Scientist

Technical Security Policies and Standards Consultant  


Technical Security Policies and Standards Consultant  

Dublin | Ireland

Division Description

The Group Technology & Customer Solutions Division provides Operations, IT Run & Change, and other services to the Bank of Ireland Group, through internal capability as well as management of external vendors and outsourcing partners.

Description of business unit

Group Information Security (GIS) is a diverse, collaborative team with multiple skillsets. With global cyber threats constantly evolving, the team is critical to protecting one of the Group's most important and valuable assets: Information.

GIS not only protect the security of the Bank but also enable colleagues to develop secure ways of working and to make secure choices both in and outside of the office.

They do this through a variety of activities, including:

  • using technology to monitor existing and emerging cyber threats
  • detecting and preventing cyber attacks
  • engaging with business units to guide them in their decision making (for example when introducing new products, services and vendors to the Group)
  • explaining information security in simple terms
  • interacting with colleagues to raise the bar on security awareness so that it is at the forefront of everyone's mind.

All underpinned by guidelines, standards, policies and security controls designed to help protect Bank, employee and customer information - and a passion to keep our colleagues, communities and customers safe.

Purpose of the Role

The senior consultant is responsibleidentifying and developing policies and standards tosupport BoI'stechnical transformation to adigitalbank.A cornerstone of such a transformationis Information Security.Policies and Standardsprovide aguide to our users in terms ofthe adoption oftechnologies and adaption ofInformation Security culture.

Key Accountabilities

1) Assist in the development of new Information Security policies for the organisation in a way that:

  • a) Complies with relevant regulatory requirements
  • b) Aligns with BOI business goals and security principles
  • c) Adequately protects BOI assets
  • d) Caters for legacy and new technology
  • 2) Updates the existing body of BOI Information Security policies in line with the current schedule. This includes:

  • a) To investigate all relevant proposed amendments to Information Security policy
  • b) Identifying gaps or areas of concern where updated policy documentation can help mitigate risk to Bank of Ireland.
  • c) To organise workshops with relevant stakeholders and coordinate all related activities in order to ensure an agreed new policy version is produced.
  • d) Facilitate the communication of updates to relevant areas inside the organisation and appropriate vendor channels.
  • 3) Assist the development of, and updates to Technical Specification documents ensuring that:

  • a) All security settings of relevant technologies that live in the organisation are documented on a Technical Specification.
  • b) The level of security provided by Technical Specifications is appropriate for the organisation's requirements.
  • c) New items/requests are captured from all areas of the organisation.
  • d) Proposals are tracked and followed up until resolution.
  • e) Relevant updates are introduced in the documentation and implemented.
  • What is the opportunity?

    An opportunity exists for a role within the GIS Technology Policies & Standards team. The senior consult has the opportunity to hone their skills and knowledge by applying their expertise across the multitude of technologies an organisation the size of BoI has deployed and during the current transformation of all our services.

    Essential Qualifications

    • 3rdLevel qualification in IT
    • Professional body certification - minimum of CISSP or recognised equivalent.

    Essential Skills & Experience

    • Subject Matter Expert in key IS areas.
    • Strong technical knowledge across a variety of platforms
    • Strong technical knowledge of network protocols and related technologies
    • Strong knowledge of Information Security best practice

    Desirable Qualifications, Skills & Experience

    Experience across a number of relevant IT disciplines

    • Strong knowledge of Information Security best practice
    • Good knowledge of information security and risk control frameworks such as COBiT, ISO 27001, ISO 27002 is preferred but not essential

    Key Competencies

    Competency 1: Accountable - Self

    Competency 2: One Group, one team - Self

    Competency 3: Agile - Self

    Competency 4: Amplify Capability - Self

    Competency 5: Manage Risk - Self

    Bank of Ireland Group is an equal opportunities employer and is committed to fostering an inclusive workplace which values and benefits from the diversity of our workforce.

    Where Agency assistance is required Bank of Ireland Recruitment Team will engage directly with suppliers. Unsolicited CVs / profiles supplied to Bank of Ireland by Recruitment Agencies will not be accepted for this role.

    Closing date: Sep 30, 2019
    Sign in with LinkedIn
    Autofill my information with LinkedIn
    Email me about jobs like this

    Not ?

    Thank you

    What happens next?

    You've seen your dream job, now what can you expect from the process?