Design, develop and implement an IT governance framework, including policies and procedures and roles and responsibilities, to deliver the regulated entity's business strategies and manage effectively IT risks; Be up to date with all regulatory requirements of the EBA, ECB and CBI related to IT Security in the financial services sector and work closely with Legal and Compliance teams to ensure the regulated entity's IT program, platform and systems comply with all applicable legal requirements, regulatory obligations, and governance codes, including data protection, data privacy and financial services regulations; Oversee outsourcing relationships and manage vendor relationships with affiliated and third-party IT service providers and suppliers - own, negotiate and review SLAs; track and monitor service levels against SLAs, and address with senior management; ensure contracts and SLAs are up-to-date to align with our active requirements, risks, policies and standards, and are on commercial terms that deliver value for money; Responsible for overseeing the provision of IT infrastructure services for employees of the regulated entity (including remote connectivity for employees), including office infrastructure, network support, IT security and telecommunications, maintenance and support in partnership with facilities management; Prepare clearly defined monthly operational KPIs and strategic performance metrics on all aspects of the IT program for review with senior management, identify trends and items of concern, and escalate issues to senior management and/or board. As a result of this monitoring, prioritize and address any IT audit matters or risk issues as may arise in the course of good governance or supervision. Bachelor's / Master's Degree in Statistics, Mathematics, Computer Science, Cybersecurity, Information Systems or related field. Several years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), and information technology. Deep knowledge of enterprise compliance frameworks (e.g., NIST CSF, ISO 27001, GDPR, PCI DSS and DORA), and risk management practices. Willing to obtain the PCF-49 role as established by the Central Bank of Ireland. Doctorate in Statistics, Mathematics, Computer Science or related field. Experience leading a security function (e.g., Security Operations Center [SOC], threat and vulnerability management [TVM]). CISSP CISA CISM CRISC SANS GCIA GCIH OSCP Security+. Current or prior experience holding a PCF-49 role recognized by the Central Bank of Ireland within a regulated Payment Services entity.
