Find your new career TODAY!

Vice President Group Information Security Manager

Date Posted
7th October 2016
Information & Communication Technology
Job Type
Not Disclosed

Job Summary

This position reports to the Group Head of Operational Risk and will be responsible for development, delivery and maintenance of a comprehensive information security programme across the Group in all jurisdictions.

Job Description

The incumbent will ensure the information security programme is in compliance with applicable laws, regulations, contractual requirements, and policies to minimise risk. This position is cross-jurisdictional and could be based in any of Butterfield’s jurisdictions.

Your responsibilities will include:

  • developing Enterprise Security Service business model; developing, implementing and publishing global information security standards, polices and guidelines 
  • developing business-relevant metrics to measure the efficiency and effectiveness of the Bank’s information security management programme, facilitate appropriate resource allocation and increasing the maturity of the programme 
  • ensuring that Butterfield complies with regulatory standards regarding information and data access, security and privacy in all its jurisdictions 
  • providing subject matter expertise to executive management on a broad range of information security standards and best practices and offering strategic and tactical security guidance for all IT projects, including the evaluation and recommendation of technical controls 
  • coordinating a programme of continuous risk assessment and intrusion detection and vulnerability reviews, including the coordination of all required fixes/changes 
  • responding to regulatory and investor enquiries regarding Butterfield’s information security standards and to provide appropriate data under subpoena to regulators and/or police and enforcement agencies 
  • assuming responsibility for e-Discovery process including investigations, forensic analysis, preservation, retention and processing 
  • developing, updating and delivering training programmes on information security and privacy for Bank staff and management 
  • overseeing incident response planning and management of security incidents and events; overseeing the investigation of security breaches and assisting with disciplinary and legal matters associated with such breaches, as necessary 
  • developing vendor standards for information security and reporting on vendor performance as it relates to information security 
  • classifying, monitoring and tracking user access and privileges 
  • providing guidance to senior management and business units across all jurisdictions in the 
  • development, implementation and maintenance of information security; assisting peer managers in understanding and responding to security audit failures reported by internal and external auditing departments 
  • managing staff and having dotted line management of additional resources across all jurisdictions 

Your experience/skills may include:

  • university degree in a related field with CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) with 10 years’ experience in information security management and five years’ financial services experience 
  • CISA (Certified Information Systems Auditor); CRISC (Certified in Risk and Information Systems Control); CFE (Certified Fraud Examiner) are preferred qualifications 
  • strong analytical, interpersonal, communication and writing skills 
  • strong project management skills 
  • strong knowledge of technology infrastructure/ architecture 
  • proficient in Microsoft Office suite of applications

Upload a New Document for this application

Password* Confirm Password*
First Name* Last Name*
Home Location*:
How did you find us?*
Cover Letter
By submitting this form you agree to our terms of use