Information Security Consultant

Description:

Group Information Security (GIS) is a diverse, collaborative team with multiple skillsets. With global cyber threats constantly evolving, the team is essential to protecting one of the Group's most meaningful and valuable assets: Information!

GIS not only protect the security of the Bank but also enable colleagues to develop secure ways of working and to make secure choices both in and outside of the office.

• using technology to monitor existing and emerging cyber threats
• detecting and preventing cyber attacks
• engaging with business units to guide them in their decision making (for example when introducing new products, services and vendors to the Group)
• explaining information security in simple terms
• interacting with colleagues to improve security awareness so that it is at the forefront of everyone's mind.

All underpinned by guidelines, standards, policies and security controls designed to help protect Bank, employee and customer information - and a passion to keep our colleagues, communities and customers safe!

What is the opportunity

An opportunity exists within the GIS Technology Policies & Standards team. The senior consult has the opportunity to hone their skills and knowledge by applying their expertise across the multitude of technologies an organisation the size of BOI has deployed and during the current transformation of all our services.

The role will give the successful candidate a central view point of how an established bank's technical network transitions into a digital bank to deliver the functionality our customers demand.

The senior consultant is responsible identifying and developing Policies, Standards and Technical Specifications to support BOI's technical transformation to a digital bank. A cornerstone of such a transformation is Information Security. Policies and Standards provide a guide to our users in terms of the adoption of technologies and adaption of Information Security culture.

Assist in the development of new Information Security Policies for the organisation in a way that:

• Follows relevant regulatory requirements
• Aligns with BOI business goals and security principles
• Adequately protects BOI assets
• Caters for legacy and new technology

Updates the existing body of BOI Information Security Standards in line with the current schedule. These includes:

• To investigate all relevant proposed amendments to Information Security policy
• Identifying gaps or areas of concern where updated policy documentation can help mitigate risk to Bank of Ireland.
• To coordinate workshops with relevant partners and coordinate all related activities in order to ensure an agreed new policy version is produced.
• Facilitate the communication of updates to relevant areas inside the organisation and appropriate vendor channels.

Updates to Technical Specification documents, ensuring that:

• All security settings of relevant technologies that live in the organisation are detailed on a Technical Specification.
• The level of security provided by Technical Specifications is appropriate for the organisation's requirements.
• New items/requests are gathered from all areas of the organisation.
• Proposals are tracked and followed up until resolution.
• Relevant updates are introduced in the documentation and implemented.