Head of Cyber Assurance

The Head of Cyber Assurance is a key leadership position within Barclays' Cyber Posture and Assurance function, part of the Chief Information Security Office, with enterprise-wide responsibility.

This role is accountable for defining, implementing, and evolving the strategy for cyber assurance testing across the enterprise, ensuring comprehensive remediation of findings across the bank.

• Oversee development and execution of testing frameworks, lead a team of Cyber Assurance Subject Matter Experts, and ensure activities evaluate emerging threats and regulatory standards.
• Conduct broader analysis to manage risks effectively, identify root causes, and foster continuous improvement.
• Collaborate with stakeholders across business, Technology, Operational Risk, Internal Audit, and security leadership to promote a culture of security assurance.
• Incorporate threat intelligence insights into testing programs to simulate real-world attack vectors.
• Ensure testing activities comply with standards such as ISO 27001, NIST, PCI DSS, GDPR, and support audit requirements.

Experience in information security and/or technology with leadership focus on assurance testing, controls enforcement, red/blue teaming, or vulnerability management.

Serve as a primary liaison among business, technology, and security functions to ensure the confidentiality, integrity, and availability of information and support security risk mitigation.

• Engage with stakeholders to understand security requirements and enhance risk management.
• Perform risk assessments to identify cybersecurity threats, prioritize them, and communicate findings to senior stakeholders.
• Develop and implement security policies and procedures aligned with the risk management framework.
• Manage the implementation, testing, and monitoring of security controls across IT systems.
• Conduct training sessions to educate employees and promote cybersecurity awareness.
• Manage complex cybersecurity incidents by collaborating with IT teams and response experts.
• Identify emerging cybersecurity trends, threats, and technologies to address risks by adopting new security solutions.

• Manage a business function, contribute to strategic initiatives, and influence policies and procedures.
• Lead a large team or projects, act as a technical expert, and guide less experienced specialists.
• Provide advice to senior management, manage resources and budgets, and ensure regulatory compliance.
• Monitor external environment and influence regulatory and industry developments.
• Demonstrate extensive knowledge of industry practices, exercise strategic decision-making, and influence stakeholders.

All senior leaders are expected to embody leadership behaviors: Listen, Energize, Align, and Develop. Colleagues should demonstrate Barclays' values—Respect, Integrity, Service, Excellence, and Stewardship—and the Barclays Mindset—Empower, Challenge, and Drive.