US
Upwind SecurityField Marketing Manager, West Coast
Field Marketing Manager executing regional field marketing programs for Upwind Security to enhance brand presence and drive pipeline growth.
PC
Hybrid Head of Operational Risk, Information Security
Posted last week
About the role
- Lead the development and continuous enhancement of Pliant’s Operational Risk and Information Security Frameworks in line with FCA, PRA, and UK EMI expectations
- Maintain governance, control, and reporting structures that meet SYSC 13A, Operational Resilience, and Risk Management requirements
- Act as the 2nd Line of Defence lead, providing independent oversight, challenge, and assurance across all Pliant entities
- Partner with Engineering, Compliance, and Operations teams to embed security by design into all products and processes
- Advise senior management, the UK Board, and Group Risk Committee on risk trends, resilience, and information security posture
- Own and maintain the enterprise-wide incident management framework, covering ICT and non-ICT incidents
- Ensure consistent incident classification, escalation, root cause analysis, and reporting in line with FCA/PRA operational incident and major incident requirements
- Lead post-incident reviews and ensure lessons learned are documented and integrated into ongoing risk management processes
- Oversee compliance with UK incident notification obligations
- Maintain and improve Pliant’s Information Security Management System (ISMS) in accordance with ISO 27001, SOC 2, and PCI DSS
- Develop, implement, and enforce security policies and standards aligned with NCSC guidance and ICO data protection expectations
- Oversee cyber incident detection, response, and recovery in coordination with the Group Technology team
- Ensure business continuity and disaster recovery plans are regularly tested and compliant with FCA and PRA operational resilience principles
- Coordinate Business Continuity Management (BCM) and Operational Resilience across the UK entity and the wider group
- Conduct and maintain Business Impact Analyses (BIAs) and ensure Important Business Services (IBS) have tested impact tolerances
- Oversee alignment of technical recovery objectives (RTOs/RPOs) with regulatory and business requirements
- Collaborate with IT and Operations to ensure continuity arrangements remain fit for purpose and demonstrably resilient
- Oversee the outsourcing and third-party risk management framework in compliance with FCA/PRA outsourcing rules and the EBA Outsourcing Guidelines
- Conduct due diligence and ongoing monitoring of critical third parties and cloud providers
- Ensure supplier contracts include clear provisions for risk management, data protection, and security obligations
- Liaise with the Group Legal and Compliance teams to ensure consistent governance of material outsourcing arrangements
- Serve as the primary point of contact for the FCA on operational risk, ICT risk, and information security matters
- Represent Pliant Payments Ltd and the Group in regulatory reviews, audits, and assurance activities
- Support audit readiness for FCA, ISO 27001, SOC 2, PCI DSS, and other relevant frameworks
- Track audit findings, ensuring timely remediation and effective follow-up
- Foster a strong risk and security culture throughout the organisation
- Design and deliver regular training on cybersecurity, incident reporting, risk management, and operational resilience
- Encourage continuous improvement, open communication, and proactive identification of risks
Requirements
- Bachelor’s or Master’s degree in Information Security, Risk Management, Computer Science, or a related field
- 5+ years of experience in operational risk, ICT risk, or information security management within financial services, fintech, or EMI environments
- In-depth understanding of FCA and PRA operational resilience, UK GDPR, and information security expectations
- Proven experience implementing or managing ISO 27001, SOC 2, and PCI DSS frameworks
- Strong leadership and stakeholder management skills, with experience managing a small risk/security team
- Excellent written and verbal communication skills, capable of engaging senior management, regulators, and auditors.
Benefits
- The opportunity to work in a growing team with big responsibilities that thrives on a strong exchange of knowledge and excellence
- Attractive remuneration
- Flat hierarchy and transparent communication in a relaxed, professional atmosphere
- Opportunity to develop your talent in a dynamic team with ambitious goals
- Flexibility and possibility to work remotely
- Company card with a monthly allowance for lunches, coffee, etc. with co-workers
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
KR
KraussMaffeiCyber Security Architect
undefined
MA
Senior Cybersecurity Engineer providing technical expertise in cybersecurity operations within federal and private sectors. Leading SOC operations, overseeing cybersecurity strategies, and collaborating with key stakeholders.
IT - Security & Resilience Engineer focusing on vulnerability management for LBBW, leading security initiatives and ensuring compliance in a regulated banking environment.
IT - Security & Resilience Chief Engineer focusing on SIEM at LBBW, leading complex security projects and enhancing IT security architecture across the bank.
Engineering Manager leading production technology and IT security department at Uniper in Landshut. Responsible for project management and technological advancement in power generation.
RC
RailWorks CorporationProtection Foreman, Railway Safety Personnel – Bilingual
Contremaître protecteur supervisant des équipes sur des propriétés ferroviaires actives. Organiser les séances d'information et garantir la sécurité et l'efficacité des travaux en utilisant les règles d'exploitation ferroviaire.
Senior Defensive Security Advisor at Desjardins identifying and mitigating threats across systems and networks. Leading complex initiatives and collaborating with stakeholders for effective security posture.
Life and health insurance financial security advisor serving clients by providing advice and maintaining business relationships. Focused on sales of insurance products and services based on client needs.
CE
Care New EnglandDirector, Security
Director of Security overseeing all safety and security operations for Women & Infants Hospital. Responsible for deterring crime, protecting premises, and managing transport services.