Financial Conduct Authority
Regulating financial services firms and financial markets in the UK, https://www.fca.org.uk/careers
Requirements of the role
The FCA regulates the conduct of 45,000 firms in the UK to ensure our financial markets are honest, fair and competitive. Follow this link to find out more About the FCA.
The Cyber and Information Resilience division was established in response to the growing threat of cyber security risks and the FCAs increasing reliance on data to effectively regulate the financial sector and ensure markets function well. This team integrates the key disciplines of cyber and information security, information management, and data privacy, providing a cohesive approach to safeguarding information and supporting regulatory objectives.
The team is primarily focused on the following key objectives:
Assuring services to ensure our systems, infrastructure, suppliers, and business processes are compliant with our policies and the FCA’s risk appetite
Validating that operational decisions are made in accordance with our security policies and standards, and do not increase the FCA’s overall risk exposure
Analysing compliance with the fundamental processes and plans required to manage risk and safeguard our most important assets
Determining that appropriate governance measures and controls are in place to ensure identified cyber risks and vulnerabilities are properly prioritised
What will you be doing?
Lead the implementation and management of Cloud Security Posture Management (CSPM) toolsets across AWS and Azure environments
Develop and enhance security controls to address evolving threats targeting our cloud infrastructure
Build and maintain relationships with stakeholders, resolving conflicts and prioritising security tasks, while effectively communicating complex security concepts to diverse audiences – from technical teams to C-suite executives –and driving technical and strategic conversations around cloud security architecture and implementations
Conduct regular security audits and risk assessments to identify vulnerabilities and mitigate risks
Perform Threat Modelling for cloud infrastructure, lead Well-Architected Reviews, and create and maintain assurance processes and monthly security reporting for executive leadership
Manage a team of 3 cloud security assurance analysts, providing mentorship and direction, and define and track security metrics, KPIs, and KRIs to measure the effectiveness of cloud security initiatives
View on member website
ViewLocation
London, Leeds, EdinburghContract type
Full time, Permanent
Profession
Assurance, Cloud, Finance
Working pattern
Flexible working, Hybrid
Closing Date
26/05/2025