Lead Information and Cyber Security Specialist

Team IT

Location Holborn Office

County Central London

Ref # 24420

Closing Date 13-Mar-2026

At Metro Bank, we believe the best banking experience starts with people who genuinely care. We’re not just delivering banking services - we’re building trust through authentic connections. Here, our people come first; our colleagues are part of a team that values individuality, collaboration, and long-standing relationships. We are also all about balance so most of our jobs offer the opportunity for hybrid working built around your role and home life, wherever possible.

What you will do:
 

•  Provide an Information Security support and oversight service to change initiatives (from Small Change to enterprise level Programmes), to ensure that Information Security risk is managed in accordance with the Bank’s Risk Management and Information Security policy frameworks, to inform and direct both tactical and strategic decision making.

•  Work with various first line of defence teams to ensure alignment of technology controls to relevant information security standards.

•  Support and challenge Information Security control design across IT and the wider business to be as efficient and effective as possible given the dynamic nature of risk and threat within the banking industry.

•  Ensure transparency in Information Security decisions made across all programmes and projects that you are supporting.

•  Support a varied and demanding programme of bank-wide change working with project teams to advise and guide on information security best practice. You will help ensure that final outputs comply with external best practice, regulation and internal governance, whilst balancing the specific delivery needs and challenges of the project.

•  Identify security testing requirements, collaborate with appropriate stakeholders to scope these tests and to ensure that the business risk associated with any issues identified is incorporated into project risk management and treated in accordance with the Bank’s risk management policies and processes.

 And... we are a bank so risk is a part of everything we do. We love people who take responsibility, do the right thing for customers, colleagues and Metro Bank and have the ability to call out any concerns.

 

What you will need: 
 

•  Specific experience in secure design, build and control methodologies aligned to relevant security standards, e.g. ISO27001, PCI DSS, NIST.

•  Understand the regulatory landscape facing financial institutions.

•  Demonstrable experience of Agile, DevSecOps, Cloud, containerization, microservices and similar technologies is desirable.

•  Detailed technical knowledge of Application Security and Network Security is beneficial but not essential for the role.

•  Good understanding of information security within the project management lifecycle, alongside a solid working knowledge of enterprise technology. 

•  Strong risk management background and experience in conducting security risk assessments on projects and developing security controls.

•  Ability to distil complex conversations into information that can be consumed by a non-technical audience from which to make decisions is a core requirement of the role.

•  Prior experience working in an environment that requires applying an adaptable approach across varied stakeholders is essential.

•  Ability to critically assess regulatory risks applicable to systems and projects within the financial industry against the wider business and information security risks.

•  Understand the risks associated with your job and what that means for you, Metro Bank and all our stakeholders

 Our promise to you…
 

•    We believe in “one in, one up” at Metro Bank, growing our own and promoting from within. That is why we are looking for YOU! An AMAZEING colleague to move into this FANtastic new role!

•    We will make sure that you are well-rewarded by providing you with a competitive salary, discretionary annual bonus, and a wide range of benefits, including generous holiday allowance, attractive pension scheme, healthcare, life assurance, and a number of colleague discounts! 

•    We will give you the training to ensure you succeed in your role and plenty of internal opportunities to progress your career (around 40% of our recruitment comes from internal promotions!

Important Footnote

Diverse teams really are the best teams. We know that candidates (especially women, research tells us) may be put off applying for a job unless they can tick every box.  We also know that ‘normal’ office hours aren’t always doable, and while we can’t accommodate every flexible working request we are happy to be asked.  So if you are excited about working with us and think you can do much of what we are looking for but aren’t sure if you are 100% there yet… why not give it a whirl? Please note that sometimes we may close a job earlier for applications if we are inundated with amazing candidates.. Good luck!