CISO

Crown Agents Bank is a vastly growing and regulated UK bank that connects emerging and frontier markets to the rest of the world, using FX and payments technology. We are transforming the way payments and FX move through emerging markets, reducing friction so that more money gets to those who need it. Emerging markets payments are usually challenging, expensive, unreliable and opaque. Our solutions help fix these pain points. Ultimately, we connect traditionally hard-to-reach regions to global financial infrastructure, giving access to the best prices and the fastest, most reliable settlement.

FX and cross-border payments are often complex and expensive, especially when operating in emerging markets. Crown Agents Bank (CAB) wraps its deep and trusted relationships and strength of network around innovative digital capabilities, and cross-border transaction banking solutions to enable fintech, corporates, governments, development organisations and banks to move money to, from, and across often hard-to-reach markets.

The CISO role will focus on the following four critical outcomes:

1. Functional Leadership - Effective team leadership in meeting functional objectives, such as:

• Functional performance outpaces peers
• Staff adapts to organisational change
• Functional performance satisfies the C-suite

1. Information Security Service Delivery - Effective delivery of quality services in supporting business objectives, such as the function meets: 

• Service delivery timelines
• Project timelines
• Service quality standards

1. Enterprise Responsiveness - Ability to sensitize the organisation to the role and importance of information security - for example, employees:

• Meet the information security baseline
• Limit policy deviations
• Make informed, independent risk decisions

1. Scaled Governance - Ability to increase cooperation with information security recommendations, such as:

• Information risk influences enterprise-level decisions
• Decision makers involve information security in enterprise-level decisions
• Information security advice balances security and business objectives
• Information Security Management - Maintain the integrity, confidentiality, and availability of information and business services by applying a risk management process and providing assurance of information systems. Drive continuous improvement of the existing information security management framework.
• Strategic Planning and Transformation  - Lead the design and execution of a robust cyber security strategy, addressing both short-term operational requirements and longer-term strategic objectives. Drive digital transformation initiatives to consolidate and rationalise various security solutions into a single, integrated platform.
• Governance - Ensure that the bank's security strategy aligns with business objectives and regulatory requirements. Develop and implement policies, standards, and procedures to ensure compliance with UK and international security standards and regulations.
• Education and Training - Develop and oversee a security awareness program that educates employees about corporate security policies and the importance of protecting the bank's information resources
• Technical Ability - Develop, implement, and monitor a strategic, comprehensive enterprise information security and risk management program to ensure that the integrity, confidentiality, and availability of information is maintained.
• People - Build a culture of security awareness and promote cross-functional collaboration across all levels of the organization. Develop, mentor, and lead a team of information security professionals.
• AI & Emerging Technologies - Establish and oversee frameworks for responsible AI use, including risk assessment, bias mitigation, and compliance with evolving regulations. Lead evaluation and integration of AI-driven security solutions.
• Modern Workforce Security - Design and implement security controls for hybrid and remote work environments, including third-party and supply chain risk management.
• Data Ethics & Privacy - Advise on ethical data practices, privacy-by-design, and compliance with global data protection standards. Ensure transparency and accountability in the use of advanced analytics and automation.

• Bachelor’s degree in Information Technology, Information Security, Computer Science, or a related field (Master’s degree preferred).
• Relevant professional qualifications such as CISSP, CISM, CRISC, or CGEIT.
• Experience in AI governance, responsible innovation, or machine learning security preferred.
• Knowledge of global AI regulations and ethical frameworks advantageous.
• Proven experience as a CISO or similar high-level leadership role in Information Security, preferably within the banking sector.
• Proficient knowledge of UK and international information security regulations and standards.
• Experience consolidating point solutions into a security platform.
• Excellent knowledge of information security concepts, including risk assessment, threat management, incident response, and identity and access management.
• Extensive experience with cloud security, AI, and emerging technologies.
• Experience managing Information Security teams and implementing strategic change.
• Demonstrable strategic planning and commercial awareness skills.
• Exceptional leadership and people management abilities.
• Excellent communication, negotiation, and influencing skills.

• Hybrid working
• Contributory personal pension plan: - Minimum: Employee 2% and Employer 7%. Employer matches contributions in 1% increments to a maximum of: Employee 5% and Employer 10%
• Life Assurance – 4 times annual salary
• Group Income Protection
• Private Medical Insurance – this may include cover for partner and or children at company cost. Cover includes Optical, Dental and Audiology
• Discretionary Bonus
• Competitive Annual Leave
• 2 Volunteering Days
• Benefit Hub