A global bank headquartered in Europe is seeking an Insider Risk Program Coordinator to help drive the success of the Bank’s Insider Risk Management Program. Working as part of the team and reporting into Insider Risk program lead, this role will ensure high-quality policy, process, workflow, investigative, and analytical deliverables, and serve as the primary referent for the Bank’s program. The ideal candidate will have a strong background in insider risk technologies (especially analytic technologies such as UEBA systems and data protection controls), processes, regulatory standards, investigations, cybersecurity, and team management, with the ability to effectively collaborate with stakeholders across multiple functions. This experience should include knowledge of and experience with EU Works Councils’ expectations and processes. The ideal candidate will also have experience in a European Global Systemically Important Financial Institution, having served in a cybersecurity, enterprise security, or financial crimes/fraud management role.
Responsibilities include, but are not limited to:
- Support development, coordination, socialization, and implementation of an enterprise operating model with supporting policies, processes, technology integration, and workflows for preventing, detecting, investigating, and mitigating insider risks.
- Support development and implementation of insider risk technology platforms, especially but not limited to design and deployment of a UEBA platform.
- Advise and support management of metrics, KPIs and report enhancements to measure the effectiveness of the program.
- Ensure insider threat detection, analysis, and mitigation strategies align with the Firm's overall security and compliance objectives.
- Coordinate efforts with the Firm’s cybersecurity, security, HR, legal, compliance, threat management and risk management teams, to develop proactive insider threat prevention and detection strategies.
- Continuously assess and enhance insider risk methodologies, workflows, and technologies to optimize effectiveness.
- Produce regular high-quality briefings, reports, and recommendations to senior leadership and key stakeholders.
- Maintain strict confidentiality and professionalism in all operational and advisory activities.
Requirements
Essential
- Bachelor’s degree in a related field.
- 6+ years of experience in cyber and information security, with extensive hands-on experience in insider threat, incident response, threat hunting, and/or forensic analysis.
- 2+ years of demonstrated experience in insider risk management-related technologies, especially UEBA, data analytics, writing detection signatures, or enhancing SIEM/SOC processes.
- Experience and knowledge of the European financial services regulatory environment.
- Strong understanding of cybersecurity principles and behavioural analytics.
- Excellent written and oral communication and interpersonal skills, with the ability to engage effectively with senior leadership and cross-functional teams.
Preferred
- 5+ years of experience in a global systemically important financial institution.
- Experience developing and producing Legitimate Interest Assessments and Data Protection Impact Assessments in support of EU and Work Council regulatory compliance.
- Advanced industry certifications, such as GCIA, GCIH, GCFA, CISSP, or equivalent.
Solutions focussed
- AI-native User Entity Behavioural Analytics
- SIEM / SOAR platforms
- Data analytics platforms
- Data Loss Prevention
- Identity and Access Management
- Network Segmentation
Client-centric
- Uses own and wider knowledge and contributes to others to enable and make sound judgements that impact the client and team
- Anticipates client needs and addresses these
- Provides the best possible services to clients, ensuring the client is at the heart of everything we do
One Firm
- Builds strong relationships thought common goals, individual contribution and support in times of need
- Considers the regional and global implications of what we do in our own areas of responsibility or team/department
Benefits
All employees are expected to display behaviours reflective of our company values: Integrity and Ethics, Collaboration and Teamwork, Commitment to People and Professionalism and Excellence.
Skills Required
- Bachelor's degree in a related field
- 6+ years in cyber and information security with hands-on insider threat, incident response, threat hunting, or forensic analysis experience
- 2+ years experience with insider risk technologies (UEBA, data analytics, writing detection signatures, enhancing SIEM/SOC processes)
- Experience and knowledge of the European financial services regulatory environment
- Strong understanding of cybersecurity principles and behavioural analytics
- Excellent written and oral communication and interpersonal skills for engagement with senior leadership and cross-functional teams
- 5+ years experience in a Global Systemically Important Financial Institution (G-SIFI)
- Experience producing Legitimate Interest Assessments (LIA) and Data Protection Impact Assessments (DPIA) for EU/Works Council compliance
- Advanced industry certifications (GCIA, GCIH, GCFA, CISSP or equivalent)
What We Do
Control Risks exists to make our clients succeed. We are a specialist risk consultancy that helps to create secure, compliant and resilient organisations in an age of ever-changing risk. Working across disciplines, technologies and geographies, everything we do is based on our belief that taking risks is essential to our clients’ success. We provide you with the insight to focus resources and ensure you are prepared to resolve the issues and crises that occur in any ambitious global organisation. We go beyond problem-solving and give you the insight and intelligence you need to realise opportunities and grow. From the boardroom to the remotest location, we have developed an unparalleled ability to bring order to chaos and reassurance to anxiety.
