Job description
General information
Serving our customers, communities, and planet a little better every day.
Supplier Oversight, Information Security Manager.
Permanent
Edinburgh / Glasgow Offices, Flexible working available
Excellent Salary & Benefits - £50,240 to £62,800
What we’ll offer
We’re embracing an agile way of working; this Supplier Oversight, Information Security Manager role will join us on an exciting journey. Join us and bring your talent, expertise, and skills to join our existing colleagues and make a difference to our customers, communities, and planet.
Job Purpose:
You will manage all the key elements involved in the end-to-end 3rd Party Information Security Oversight. This includes working extensively within internal and external stakeholders to assess, assure and provide required remediation to protect Tesco Bank customers, brand and assets.
The Role
You will manage and own a diverse portfolio of supplier assessments, undertaking Information Security reviews using a defined methodology and supporting processes. From planning, reviewing material, supplier assessment, reporting of identified risks and provision of required remediation.
You will be providing subject matter expertise to both internal and external stakeholders:
- Share knowledge and mentoring to colleagues.
- Attending internal committees, workshops, acting as delegate for Lead Information Security Manager when required.
- Supporting ongoing risk identification and assessment of external threats to supplier base, aligned to oversight model.
- Maintaining accurate records and documentation, ability to coordinate material from multiple sources and create a single view for senior management.
- Actively contribute to the ongoing development and promotion of the Information Security Oversight Team through constructive challenge, providing solutions, innovation and continual improvement.
- Support and active collaboration / contribution in team objectives.
What you’ll bring
We don’t expect you to tick every box, and if you feel you hit most of the brief, it’s worth exploring to further develop your career here with us at Tesco Bank.
- Demonstrate an advanced application of Information Security knowledge and expertise in support of Supplier oversight. For this to be achievable a blend of technical and softer skills are required:
- Strong stakeholder management, ability to engage to a diverse audience from differing backgrounds and sectors.
- Strong understanding of Security frameworks and ability to identify vulnerabilities / areas of control enhancement.
- Strong communication skills (verbal and written)
- Strong analytical skills, attention to detail.
- Pragmatic and balanced outlook relative to risk and impact with the ability to apply sound judgement.
- Strong organisational skills, with the ability to coordinate and effectively self-manage your own portfolio of work to ensure high quality and timely delivery.
- Ability to accommodate travel and time away from home will be required.
- Practical experience of Information Security frameworks and oversight within a highly regulated environment
- Strong Operational risk knowledge.
- Recognised Security accreditation. (CISM, CISA, CIS Lead Auditor, etc) #LI-KP1
How to apply
Our colleagues are working hybrid, taking time to meet with colleagues in our offices for moments that matter, such as team catch ups, planning meetings and more. If you’re interested in finding out more about what a career at Tesco Bank looks like, click apply to find out more!
Why Tesco Bank?
It’s important to us that we make sure you’re supported by your team and colleague networks every day, celebrating when it matters and helping you to be the best version of yourself. The people make Tesco Bank, and we take pride in what we achieve together.
All that hard work? Come and see it turned into something real, usable, and important to customers’ and colleagues’ everyday lives. At Tesco Bank, our products make things a little better for everyone.