Product Owner - Vulnerability & Secure Configuration Management Your business: The Technology division delivers the Group's information technology and banking operation functions to ensure the highest levels of customer service through world-class process excellence and technology innovation. Cyber Security protects the Group and our customers from theft, loss, and risk events, through effective and proactive management of cyber security, privacy, and operational risk.
Your new team: The Vulnerability & Secure Configuration Management Crew within Group Security is responsible for ensuring our customer and Group information is secure. This is done by managing controls, processes and systems that support vulnerability & secure configuration management, and working with stakeholders to ensure that the service is fit for purpose, adapts to the changing technology landscape, and is continually improving.
Your impact and contribution: Reporting to the Crew Lead, you will be a technical Subject Matter Expert (SME) in the vulnerability and secure configuration domain.
You will:
Partner with the Control Lead to ensure that the product roadmap meets the control objectives Lead a squad within our Pace ways of working driving various ceremonies and quarterly planning cycles to ensure the squad is clear on deliverables, priorities and is meeting its targets Offer technical expertise across design, services, and solutions to key stakeholders across the organisation Create a technology roadmap and product lifecycle for product/control adherence, including the management of delivery risks and dependencies Govern the technical decisions (e.g., product enhancements, connectors) and sign-off solutions Manage/own technology risk e.g., End of Support, vulnerabilities etc. Participate in audits and work with leads and owners to prioritise remediation of agreed findings Manage renewals (such as licence and contracts) Define and contribute evaluation criteria into the vendor selection process and provide feedback and recommendations to RFI/RFP Process We are interested in people who: Have previous experience as a product owner, technical security design or comparable role in cyber security.
You will have:
Servant leadership / mentoring attitude Experience working in Agile and DevSecOps A background in technical security design and possess security strategy expertise in leading complex project roadmaps Mature skills in design, engineering, and/or product ownership Experience across multiple security domains The ability to deliver technical project initiatives across cloud technology, tools and services preferably AWS and/or Azure Experience in a technology focused leadership role, including high levels of prioritisation and stakeholder management Proficiency in managing and working with third-party vendor relationships to get the best from our partners and the group A continuous improvement mindset #J-18808-Ljbffr