Location/Office Policy: Central Park, Leopardstown, Dublin 18
What is the Role: The Cyber Controls Assurance Manager will play a key role in measuring the performance of cybersecurity controls, ensuring their adequacy and effectiveness across the organization. This position will be responsible for developing, monitoring, and reporting key cybersecurity metrics, providing leadership with actionable insights into the organization's security posture. Additionally, the role will focus on evaluating the design and operational effectiveness of security controls, identifying gaps, and driving continuous improvement initiatives to meet compliance and risk objectives.
Key accountabilities: Development of Cybersecurity Metrics:
Define and develop key cybersecurity metrics and key performance indicators (KPIs) to monitor the effectiveness of security controls across the organization. Establish a metrics framework that aligns with organizational objectives, regulatory requirements, and industry standards.Continuous Monitoring and Reporting:
Implement real-time monitoring and data collection systems to track the performance of cybersecurity controls. Generate regular reports on the effectiveness and adequacy of cybersecurity controls for senior leadership, the CISO, and governance bodies. Ensure metrics are communicated in a way that is easily understood by both technical and non-technical stakeholders.Controls Assurance:
Perform regular reviews and assessments of the design and operational effectiveness of cybersecurity controls, ensuring they align with the organization's risk appetite. Identify control weaknesses and gaps in coverage, and work with control owners to implement corrective actions. Drive the continuous improvement of cybersecurity controls, ensuring they evolve with changing threats and organizational requirements.Automation of Control Assurance:
Leverage automation tools to improve the efficiency and accuracy of controls assurance activities. Work closely with IT and cybersecurity teams to implement automation solutions that support the ongoing monitoring and assessment of security controls.Collaboration with Risk and Compliance Teams:
Collaborate with the Risk and Compliance teams to ensure that cybersecurity metrics and controls are aligned with regulatory requirements (e.g., GDPR, PCI-DSS) and industry standards (e.g., NIST, ISO 27001). Support audit activities by providing evidence of controls assurance and addressing any gaps identified during internal or external audits.Experience:
Minimum 7-10 years of experience in cybersecurity controls assurance, metrics development, or a related field, with a focus on monitoring the effectiveness of security controls. Strong experience in designing, implementing, and evaluating cybersecurity controls within the financial services industry is highly desirable.Technical Knowledge:
Deep understanding of cybersecurity controls frameworks (e.g., NIST, ISO 27001, CIS), and experience in measuring control effectiveness. Familiarity with automation tools for metrics collection and control assurance. Experience in building dashboard and reporting systems for cybersecurity metrics using tools such as Splunk, PowerBI, or similar platforms.Leadership and Communication:
Strong leadership skills with the ability to influence stakeholders and work collaboratively with control owners, risk teams, and compliance teams. Excellent written and verbal communication skills, with the ability to present complex metrics and control evaluations to both technical and non-technical audiences.Analytical and Problem-Solving Skills:
Strong analytical skills with the ability to interpret data and identify trends, patterns, and areas for improvement in cybersecurity controls. A proactive approach to identifying gaps in controls and proposing practical solutions.Education:
Bachelor's Degree in Information Security, Cybersecurity, Data Analytics, or a related field is required. Master's Degree in Cybersecurity, Information Systems, Business Administration, or Risk Management is preferred. Equivalent industry experience may be considered in lieu of formal education for exceptional candidates.Why Work for AIB: We are committed to offering our colleagues choice and flexibility in how we work and live and our hybrid working model enables our people to balance their time between working from home and their designated office, subject to their role, the needs of our customers and business requirements.
Some of our benefits include: Variable PayEmployee Assistance ProgrammeFamily leave optionsPlease click here for further information about AIB's PACT – Our Commitment to You.
Key Capabilities Leads OthersInstils TrustCustomer FocusInformation System SecurityTechnical LeadershipIf you are not sure about your suitability based on any aspects of the role advertised, we encourage you to please contact the Talent Acquisition team at (******) for a conversation.
AIB is an equal opportunities employer, and we pride ourselves on being the first bank in Ireland to receive the Investors in Diversity Gold Standard accreditation from the Irish Centre for Diversity. We are committed to providing reasonable accommodations for applicants and employees. Should you have a reasonable accommodation request please email the Talent Acquisition team at ****** or ******
Closing Date: Tuesday, 12th November 2024
Disclaimer: Unsolicited CV's sent to AIB by Recruitment Agencies will not be accepted for this position. AIB operates a direct sourcing model and where agency assistance is required, the Talent Acquisition team will engage directly with our recruitment partners.
#J-18808-Ljbffr