IT Security Expert creating and managing SIEM solutions to strengthen Europe's defence capabilities. Collaborating in a small elite team to solve significant security challenges rapidly.
MA
Hybrid Senior Manager – Regulatory Compliance, Information Security Governance, Risk Management
Posted 2 hours ago
About the role
- Senior Manager in Regulatory Compliance ensuring effective risk management within the Information Security Group. Overseeing regulatory compliance and governance while leading automation efforts.
Responsibilities
- Own centralized monitoring, interpretation, and governance of Information Security regulatory requirements, notices, and circulars, including automated regulator communications.
- Lead the Information Security compliance automation, regulatory watch forum, driving applicability decisions, ownership assignment, and implementation accountability.
- Oversee regulatory submissions, incident reporting, and audits to ensure timely response, consistency, and sustained audit readiness.
- Ensure adherence to internal policies, regulatory requirements, and industry standards.
- Identify, assess, and manage information security and compliance risks across IBG locations.
- Maintain compliance documentation and evidence for internal/external audits.
- Oversee the organization’s regulatory compliance with respect to information security.
- Work with different stakeholders, to ensure that all regulatory requirements with respect to information security are identified, documented and complied with.
- Conduct regular compliance assessments to identify and remediate compliance gaps.
- Develop and maintain a register of all information security regulatory obligations. Ensure that the register is regularly updated and reviewed.
- Be able to satisfy evidence and requirements request from internal auditors and external institutions to demonstrate compliance.
- Maintain and track all security compliance requirements for the IBG countries.
- Manage the IS regulatory calendar and ensure that all regulatory tasks are completed on time.
- Maintain compliance documentation and records.
- Respond to regulatory inquiries and audits with respect to information security.
- Govern regulatory mandated information security / cyber security regulations and standards across the regions including cyber security framework in NESA, SWIFT-CSP, PCI-DSS, DFS500, FFIEC, and HKMA-CRAF etc.
- Govern the IS Regulatory Watch Forum and provide regular reports on its activities and awareness to senior members of the bank on potential regulatory risk.
- Ensure that all policies and procedures, including the local security policy, are reviewed and confirmed to meet relevant regulatory requirements for IS compliance.
- Track internal and external audit issues related to IS compliance for IBG location.
- Develop compliance reports and dashboards for management review.
- Monitor the performance of IS Compliance services to ensure they meet established service level agreements (SLAs) and key performance indicators (KPIs).
Requirements
- 10 -14 years of work experience
- 6–8 years’ experience in Information Security/GRC/Regulatory Compliance.
- 3–5 years in lead or managerial role with clear ownership and decision-making accountability.
- Strong experience in regulatory technology and regulatory automation.
- Degree/master’s degree in IT/Information Security
- Professional certifications: CISA, CISM, CISSP, CRISC, ISO 27001 LA/LI (one or more).
- Familiarity with information security technologies, risk, threat and vulnerability assessments, and security measures.
- Experience with governance, risk management, and compliance frameworks (e.g., ISO 27001, NIST, GDPR, PDPL).
- Experience of working in the banking domain or with banking/payment industry clients.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Information Security Engineer overseeing security tasks, ensuring implementation of security controls. Collaborating with legal and technical teams in a professional office environment.
Security Administrator managing security across cloud and on - premises environments at Homecare Homebase. Collaborating with teams for patient care systems security and compliance.
Principal Security Engineer shaping security strategy for enterprise IT systems and software products at RedCloud. Leading a team to ensure robust security practices for business growth.
Security Lead at Qargo overseeing security strategy and implementation for a cloud - native transport platform. Collaborating with engineering to ensure compliance and resiliency across Europe.
Project Manager for cybersecurity at Consort Group, leading security solution implementations and client engagement. Collaborating within teams to execute comprehensive cybersecurity projects while ensuring client satisfaction.
Infrastructure Security Consultant deploying and implementing network security solutions at Consort Group. Responsible for analyzing and producing comparative syntheses of security solutions with a hybrid work arrangement.
Cyber Security Engineer responsible for application security and vulnerability management for Consort Group. Supporting secure development practices and collaborating with development teams to identify and mitigate security risks.
Cybersecurity Intern supporting Keenova's security program through hands - on experiences and mentorship. Engaging in various cybersecurity functions and contributing to meaningful projects.
Senior Security Engineer securing Cloudflare's global network and enterprise infrastructure. Working closely with engineering, IT, and compliance teams to address security risks at scale.