Job
Description
As a Cyber Governance Analyst, you will support the cultural direction and assist Travelex in achieving our company strategic cyber risk and governance goals. As part of the wider Compliance and Risk (C&R) group, accountable for all things relating to oversight, compliance, and management across the estate. Y ou will be focused on supporting the development of Cyber Security as a function - a key strategic pillar within our organisation. A hands-on role with responsibilities covering our global business, you will not only be technical in nature but will also be able to provide input and assistance in ensuring oversight and reporting of critical cyber security processes through reporting Key Performance / Risk Indicators. A key part of this role will be to actively support client audit requests, support the maintenance and achiev ement of certifications for Travelex and planning both internal and external risk assessment programmes. K ey accountabilities will include: Managing comprehensive client audits, ensuring appropriate and well measured responses to questionnaires, often to tight deadlines. Support in the planning, co-ordination, and oversight of internal and external audit programmes. Support preparation, running of and minuting monthly Cyber Risk Governance oversight meetings. Liaising with regional Compliance teams to contextualise and disseminate risks pertinent to their Geography. Proactive collaboration with all regional Compliance teams to promote consistent working practices and visibility to technology related issues. Internal policy maintenance, including regular review in accordance with framework. Compiling data and metrics in a timely manner . Creation and presentation of Cyber Risk Governance Management reports, summarising status of information security issues impacting the business and identifying trends / areas of concern . Policy exception management which includes assessing and responding to exception requests and ensuing that existing exceptions are reviewed regularly. Assuring that all functions across Travelex Group globally are compliant with Information Security-related policies. Policy compliance assurance can be undertaken via multiple methods e.g. self-assessment, sampling / full audits and is primarily carried out by a third party partner. Escalating appropriately, where policy compliance is not in place and tracking any remediation actions to completion. Undertake other reasonable duties as requested by the Cyber Governance Manager. Forming tight-knit relationships with stakeholders whilst having the ability to influence decisions in a visible, transparent- and pragmatic manner. Skills and Experience Required Experience of Cyber Security in a global organisation, in information technology & related fields. Familiarity with BS 25999 / ISO27001 / PCI-DSS and related global standards / regulation. Industry Certifications are desirable but not necessary. Possess effective analytical, planning, and organisational skills. Demonstrate a proven ability to deliver with a high level of quality focus. Ability to communicate effectively at all levels and to influence key stakeholders. Have a professional approach with a confident assertive style . Build & maintain strong relationships with peers and colleagues . Why Travelex? To remain the world s leading foreign exchange specialist, we are focused on making our customers lives simpler, more engaging and hassle free while they travel or move money abroad. We promise to give them the freedom and peace of mind to explore the world, their way enabling them to travel confidently because they know they have us to lean on. Customer centricity and digital are at the heart of our business strategy. Our commitment to innovation has never been greater, with the development of a number of digital-first, greenfield products and services. And with the Travelexs resources, deep industry experience and leading brand we are inventing the future of FX, cross-border e-commerce and international payments. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
