Data Security Governance and Compliance Leads

Barclays is seeking a Data Security Governance & Compliance Lead to provide leadership across the bank’s enterprise data security governance. This role acts as the single point of accountability for defining, maintaining, and enforcing the organisation’s data security strategy, policies, and regulatory alignment.

You will lead a centralised governance function that ensures data protection controls are consistent, effective, and regulator‑defensible across all business units and geographies. Sitting at the intersection of cyber security, data ownership, and regulatory oversight, the role works closely with the CISO, CDO, Privacy, Cryptography, and Data Protection Operations teams to ensure data risks are managed in a coordinated and scalable manner.

This is a highly influential role for an experienced leader who can balance regulatory rigour, business enablement, and executive engagement in a complex global environment.

To be successful as a Data Security Governance & Compliance Lead, you should have experience with

• Data Security Governance & Policy Leadership -Proven ability to define, own, and enforce enterprise‑wide data security policies, standards, and governance frameworks in a regulated environment, covering areas such as data classification, DLP, encryption, and access controls.

• Regulatory & Risk Management Expertise- Deep understanding of data protection and security regulations (e.g. GDPR, banking regulatory standards) and the ability to demonstrate compliance through robust governance, metrics, and audit or regulator engagement.

• Senior Stakeholder Influence & Leadership - Strong capability to influence senior executives and cross‑functional leaders (CISO, CDO, CTO, Privacy, Operations) and lead teams within a global, matrixed organisation, without relying solely on direct authority.

Some other highly valued skills may include

• Senior Leadership Experience within Global Financial Services - Experience leading enterprise‑wide governance activities in a senior role within a global financial institution, navigating complex regulatory and compliance environments.

• Professional Security or Privacy Certifications- Relevant certifications such as CISSP, CISM, CRISC, CIPM/CIPT, or ISO 27001 Lead Implementer/Auditor, demonstrating depth in security governance and data protection.

• Awareness of Emerging Data & AI Security Topics - Knowledge of emerging data security technologies and AI‑related security considerations, supporting effective horizon scanning and future‑proofing of the data security governance strategy.

You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills.

This role is based of Knutsford.

Purpose of the role

To provide a primary liaison service between the business, technology, and security functions. In order to ensure the confidentiality, integrity and availability of information, and support the mitigation of security risk. 

Accountabilities

• Collaboration with stakeholders to understand their security requirements in business processes and IT projects, to enhance overall risk management.
• Execution of risk assessments to identify and prioritise potential cybersecurity threats that could impact the banks operations and data and guide the implementation of mitigation strategies and communicate findings to relevant findings to relevant senior stakeholders.
• Collaboration with business units to develop and implement security policies and procedures for the banks operations aligned to the risk management framework.
• Management of the implementation, testing and monitoring of security controls across the banks IT systems to ensure the effectiveness of controls and mitigation of risk.
• Execution of training content and sessions to educate employees, enhance cybersecurity awareness and provide guidance on safe online practices.
• Management of complex cybersecurity incidents by collaborating with IT teams and response experts to effectively resolve cases through analysis, expertise support and project supervision.
• Identification of emerging cybersecurity trends, threats, and new technologies to address potential risks by advocating the adoption of new security solutions.

Vice President Expectations

• To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures..
• If managing a team, they define jobs and responsibilities, planning for the department’s future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements..
• If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L – Listen and be authentic, E – Energise and inspire, A – Align across the enterprise, D – Develop others..
• OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions..
• Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment.
• Manage and mitigate risks through assessment, in support of the control and governance agenda.
• Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does.
• Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business.
• Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies.
• Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions.
• Adopt and include the outcomes of extensive research in problem solving processes.
• Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes.

All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship – our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset – to Empower, Challenge and Drive – the operating manual for how we behave.