Job offer Cyber Security Controls & Governance Manager

Cyber Security Controls & Governance Manager

Location: Leeds, Thorpe Park, Hybrid working.

We're recruiting for a Cyber Security Controls & Governance Manager to oversee and protect the Lowell Group's information assets and brand through the development and management of the appropriate forums and onward submission of items to overarching Risk and Control Committees.

Working with a team of cybersecurity and risk subject matter experts in second line risk, this role presents an exciting opportunity to play a pivotal part in maintaining the health of Lowell's cyber and technology risks and control environment and will suit someone who is hands on and can work collaboratively in a matrix organisation.

Accountabilities and responsibilities:

Take a leading role in the control environment definition activities and working with the first line to provide support & challenge on risk and control assessments.


Liaising with the owners of Xactium entries (risk, control, issue, incident and action) to ensure that these are maintained and updated.


Support the UK Head of Cyber Security Risk with ownership and operation of governance controls in Nordics.


Compiling reports for and administration of Technology and Information Security Risk Forum (TISF) in UK.


Providing support for Nordics IT 2LOD in delivering the above activities in the Nordics regions.


Performing supplier risk assessments and responding to client questionnaires across all three regions.


What we need from you:

Demonstrable work experience delivering effective business and technical security solutions, processes, tools and high performing teams.


Experience of operating within and contributing to Information Security Management System environment.


Experience of compliance to industry standards eg: ISO 27001; PCI DSS; ISO31000; and ITIL


An understanding of the Data Protection Act 1998 and the General Data Protection Regulation (GDPR).


Either a recognised Information Security qualification, or working towards a relevant certification (e.g. CISA, CISM, CISSP, CRISC, ISO 27001 Lead Auditor Certification, and / or Membership of the Institute of Information Security Professionals), or commensurate experience.


Understanding of Cloud service provision including eg: PaaS, SaaS, IaaS.


Experience with the systems and associated operations relating to SIEM, IDS / IPS, Vulnerability Scanning / Penetration Testing, Mobile Device Management.


Vast experience in the broad spectrum of governance roles including data, information security, and banking regulation.


A mission that gives back:

You'll also have lots of opportunities to make an impact on your personal development. At Lowell we have a big focus on helping our colleagues develop their careers and grow with us, together.

So, whatever your culture, gender identity, religion, ethnicity, age, neurodiversity, or disability status, if you're ready to help us make credit work better for all, we think you'll fit right in.

Our people are our strength, so we build strong teams thriving with diverse voices, and offer benefits that can keep our people strong.

That means…

A competitive salary.


A discretionary annual bonus for a job well done.


3% flexible benefits; pick additional benefits or take as cash each month. Whether this is extra holiday or dental cover there will be something for you.


We are committed to a hybrid working environment, where we will ask you to work in our Leeds office, which will be based in Thorpe Park. Our new purpose-built office to support collaborative working and those meaningful moments you'll only get from being in the office.


Free parking when you are in the office and when working from home, you'll be fully equipped with everything you'll need to be successful.


28 days holiday plus public holidays with the option to purchase up to an additional 5 days.


Life assurance.


A fantastic culture with more little perks along the way including, self-development opportunities, recognition awards and on-site facilities to support the varying needs of our colleagues.


Wellbeing support and a programme of webinars and classes geared towards mindfulness.


Make that first move and apply today!

#Hybridworking #togetherwegofurther

#LI-Hybrid