i-confidential Limited

We are seeking an experienced and highly motivated Cyber & IT Security Controls Manager to join our team. This role is critical in ensuring the effectiveness of the organisation's cyber and IT security control environment, supporting operational resilience, regulatory compliance, and risk mitigation across the bank. The successful candidate will have demonstrable experience in managing, assessing, and improving IT and Cyber Security controls within a regulated or complex enterprise environment. Key Responsibilities Develop a strong understanding of business areas, products, processes, and technology platforms in order to effectively assess and manage risk. Collaborate with stakeholders across the bank and business units to improve overall control effectiveness through detailed documentation of control assessments, procedures, and findings. Identify and investigate potential weaknesses and issues within internal controls, promoting continuous improvement and risk mitigation aligned to the bank's control framework. Prioritise control weaknesses based on their potential severity and impact on bank operations. Produce clear and insightful reports communicating risk assessment findings, control weaknesses, and recommendations to control owners, senior management, and key stakeholders. Execute reviews to determine the effectiveness of the bank's internal controls framework, ensuring alignment with established and evolving policies, regulatory requirements, and industry best practice. Support and implement adherence to the Controls Framework, applying appropriate methodologies for assessing controls against framework requirements. Contribute to the ongoing enhancement and maturity of cyber and IT security governance and control processes. Skills & Experience Required Demonstrable experience in Cyber Security, IT Risk, IT Controls, or Information Security Governance roles. Strong understanding of IT and Cyber Security control frameworks and risk management methodologies. Experience conducting control assessments, reviews, and assurance activities. Knowledge of regulatory expectations and industry best practices relating to cyber and technology risk. Excellent analytical and problem-solving skills with the ability to identify control gaps and recommend practical improvements. Strong stakeholder management and communication skills, with the ability to present findings clearly to both technical and non-technical audiences. Experience producing high-quality documentation, reports, and risk assessments. Ability to work collaboratively across multiple business and technology functions.

i-confidential Limited is looking for an experienced Cyber & IT Security Controls Manager to enhance our cyber and IT security control environment in Edinburgh. The role involves assessing control effectiveness, improving risk mitigation processes, and ensuring compliance with regulatory standards. The ideal candidate will have significant experience in managing Cyber Security within a complex environment, strong analytical skills, and the ability to communicate effectively with diverse stakeholder groups. Join us to make an impactful difference in our security governance.

i-confidential Limited is looking for a Cyber & IT Security Controls Manager to enhance its cyber and IT security controls environment in Edinburgh. The role involves assessing and improving IT controls, collaborating with stakeholders for risk mitigation, and producing detailed reports. Candidates should have experience in Cyber Security and a strong grasp of control frameworks, with excellent analytical and stakeholder communication skills. This position is key to ensuring operational resilience and compliance with regulatory requirements.

We are seeking an experienced and highly motivated Cyber & IT Security Controls Manager to join our team. This role is critical in ensuring the effectiveness of the organisation's cyber and IT security control environment, supporting operational resilience, regulatory compliance, and risk mitigation across the bank. The successful candidate will have demonstrable experience in managing, assessing, and improving IT and Cyber Security controls within a regulated or complex enterprise environment. Key Responsibilities Develop a strong understanding of business areas, products, processes, and technology platforms in order to effectively assess and manage risk. Collaborate with stakeholders across the bank and business units to improve overall control effectiveness through detailed documentation of control assessments, procedures, and findings. Identify and investigate potential weaknesses and issues within internal controls, promoting continuous improvement and risk mitigation aligned to the bank's control framework. Prioritise control weaknesses based on their potential severity and impact on bank operations. Produce clear and insightful reports communicating risk assessment findings, control weaknesses, and recommendations to control owners, senior management, and key stakeholders. Execute reviews to determine the effectiveness of the bank's internal controls framework, ensuring alignment with established and evolving policies, regulatory requirements, and industry best practice. Support and implement adherence to the Controls Framework, applying appropriate methodologies for assessing controls against framework requirements. Contribute to the ongoing enhancement and maturity of cyber and IT security governance and control processes. Skills & Experience Required Demonstrable experience in Cyber Security, IT Risk, IT Controls, or Information Security Governance roles. Strong understanding of IT and Cyber Security control frameworks and risk management methodologies. Experience conducting control assessments, reviews, and assurance activities. Knowledge of regulatory expectations and industry best practices relating to cyber and technology risk. Excellent analytical and problem-solving skills with the ability to identify control gaps and recommend practical improvements. Strong stakeholder management and communication skills, with the ability to present findings clearly to both technical and non-technical audiences. Experience producing high-quality documentation, reports, and risk assessments. Ability to work collaboratively across multiple business and technology functions.