Third Party Security Consultant

2 months ago 13 Applied
Job Description

Job Title: Third Party Security Consultant
Location: Pune

About Barclays
Barclays is a British universal bank. We are diversified by business, by different types of customers and clients, and by geography. Our businesses include consumer banking and payments operations around the world, as well as a top-tier, full service, global corporate and investment bank, all of which are supported by our service company which provides technology, operations and functional services across the Group.

Risk and Control Objective
Take ownership for managing risk and strengthening controls in relation to the work you do.

Working Flexibly

We're committed to providing a supportive and inclusive culture and environment for you to work in. This environment recognises and supports ways to balance your personal needs, alongside the professional needs of our business. Providing the opportunity for all our employees, globally to work flexibly empowers each of us to work in a way that suits our lives as well as enabling us to better service our customers and clients needs. Whether you have family commitments or you're a carer, or whether you need study time or wish to pursue personal interests, our approach to working flexibly is designed to help you balance your life. If you would like some flexibility, then please discuss this with the hiring manager, and your request will be reviewed subject to business needs

Hybrid Working

Structured hybrid role:
At Barclays, we offer a hybrid working experience that blends the positives of working alongside colleagues at our onsite locations, together with working from home. We have a structured approach where colleagues work at an onsite location on fixed, anchor, days of the week, for a minimum of two days a week or more, as set by the business area (or nearest equivalent if working part-time hours). Please discuss the working pattern requirements for the role you are applying for with the hiring manager. Please note that as we continue to embed our hybrid working environment, we remain in a test and learn phase, which means that working arrangements may be subject to change on reasonable notice to ensure we meet the needs of our business.


This role is accountable for ensuring the Bank has appropriate visibility, transparency and insight into the operational risks it is exposed to relating to Third Party Risk and the measures required to mitigate them. This accountability will be executed through the implementation of independent, evidence-based assurance of Third Party Risk across the region.

What will you be doing

. Deliver all Third Party Assurance reviews in line with relevant policies, standards and target operating model Identify areas of control weakness or strength for Third Party, driving proactive remediation and action Support and advise the business in developing remediation plans for control weakness
. Support the Chief Security Office (CSO) function with a Programme management service for delivery of Third Party assurance programmers within CSO
. Produce timely and accurate management information in support of the governance and operating model of CSO.
. Stakeholder management and leadership. Experience building relationships with internal customers - BU and CCO Customers - as well as externally if required.
. Act as a subject matter expert for Cyber and Information Security within the Third Party Assurance
. Proven ability to operate in a matrix organisation
o Decision making and problem solving.
o Track, review and report on the management of Third Party risk across the regions
o Analyses of data in aggregate to identify trends and indicators of thematic issues
o Focus on aligning Third Party assurance scoping with the business unit and operations the Third Party is supporting to proactively identify inherent risk and provide solutions to remediate

What we're looking for:

. Experience in Third Party Risk Management (TPRM) or Governance, Risk Management, and Compliance (GRC), Cybersecurity, Application Security, Cloud Security Architecture (SaaS, PaaS & IaaS) within a large enterprise level environment
. Experience using a broad set of technologies (e.g., servers, operating systems, applications, databases, hypervisors, virtualization management, containers, compute, storage, etc.)
. Understanding of network and host-based security technologies, including firewalls, web application firewalls, intrusion detection/prevention, data loss detection/prevention, threat protection, anti-malware, file integrity monitoring, configuration management, etc.
. Understanding of security testing methods and technologies, including penetration testing, web application security assessments, vulnerability assessments, etc.
. Understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity
. Understanding of industry risk frameworks (e.g., ISO27001, NIST, MITRE ATT&CK, etc.)
. Proficient verbal and written communication skills, including the ability to independently and effectively participate in strategic collaborations with peers across the firm and influence senior management decisions
. Strong project management skills with an ability to multitask effectively and deliver on commitments

. CISSP/CISA/CISM/ISO 27001 LA/ CCSP or CRISC certification preferred
. Bachelor's degree in a relevant discipline preferred (degree in related field/IT preferred).
. Proficient with Microsoft applications (e.g., Word, Excel, Outlook, Visio, OneNote, SharePoint, Teams, etc.)
. Analysis, problem solving and decision making skills
. Ability to communicate complex topics in efficient and effective manner.
. Ability to communicate effectively at all stages of organisation
. Strong negotiation skills
. Experience of building and maintaining effective relationships at all levels in the bank and external to the bank
. Practical understanding of relevant regulatory environment

Skills that will help you in the role:

. Shows integrity while addressing challenging situations
. Actively seeks ways to understand, mitigate or reduce third party risks
. Ability to work under pressure or within tight timescales
. Freely shares information and experiences and seeks knowledge from others
. Effective at working with minimal guidance in unstructured teams, situations and environments
. Challenges way of operating with a focus on pragmatism
. Demonstrates initiative and competence
. Supports and encourages positive working behaviours in others
. Able to shift well from task to task

Where will you be working

Be More at Barclays
At Barclays, each day is about being more - as a professional, and as a person. Be More @ Barclays represents our core promise to all current and future employees. It's the characteristic that we want to be associated with as an employer, and at the heart of every employee experience. We empower our colleagues to Be More Globally Connected, working on international projects that improve the way millions of customers handle their finances. Be More Inspired by working alongside the most talented people in the industry, and delivering imaginative new solutions that are redefining the future of finance. Be More Impactful by having the opportunity to work on cutting-edge projects, and Be More Valued for who you are.
Interested and want to know more about Barclays Visit for more details.
Purpose, Values and Mindset

We deploy finance responsibly to support people and businesses, acting with empathy and integrity, championing innovation and sustainability, for the common good and the long term.
Our values underpin everything we do: Respect, Integrity, Service, Excellence and Stewardship.

We harness the power of diversity and inclusion in our business, trust those we work with, and value everyone's contribution.
We operate with honesty, transparency and fairness in all we do.
We act with empathy and humility, putting the people and businesses we serve at the centre of what we do.
We champion innovation, and use our energy, expertise and resources to make a positive difference.
We prize sustainability, and are passionate about leaving things better than we found them.

Our Mindset shapes how we take action, living by our Values, driven by our Purpose, always with our customers and clients at the heart of what we do our Mindset is to Empower, Challenge and Drive.

Trust and support each other to deliver. Make decisions with those closest to the topic. Include diverse perspectives. Celebrate success and learn from failure.
Question whether things can be done better. Use insights based on data to inform decisions. Be curious about how we can adapt and improve. Speak up and be open to alternative viewpoints.
Focus on outcomes. Deliver with pace. Be passionate and ambitious about what we do. Take personal responsibility. Actively build collaborative relationships to get things done.

Job Source:

Barclays is a British multinational universal bank, headquartered in London, England. Barclays operates as two divisions, Barclays UK and Barclays International, supported by a service company, Barclays Execution Services.

Career Advice to Find Better