Join Barclays as an HR Data Security Lead, responsible for designing, governing and assuring the security frameworks and controls that enable the trusted, secure and appropriate use of colleague data across the organisation.
This role will provide leadership across HR data security, access governance, data sharing, privacy-by-design controls and security assurance for HR systems, analytics, reporting and AI enabled use cases.
Purpose of the role
The HR Data Security Lead will be accountable for ensuring colleague data is protected, classified, accessed and used in line with applicable data security, privacy and information management standards. The role will establish guardrails that ensure data is accessed on a role-based, purpose-bound, time-bound and least-privilege basis, with appropriate oversight, evidence and remediation where required.
Key accountabilities
- Own and govern the security approach for colleague data across HR systems, reporting, analytics and AI enabled use cases.
- Partner with Data Privacy, Legal, HR Technology, Change, Information Security, Identity and Access Management, Risk and Control, and business process owners to ensure colleague data is used safely, lawfully and for approved business purposes.
- Define and maintain role-based access principles, ensuring the right people and systems have access to the right data at the right time.
- Review, challenge and approve data access and data sharing requests in line with privacy principles, data classification and the agreed security framework.
- Provide oversight of security role design across the HR system landscape, including Workday, analytics and reporting platforms.
- Support programme and change delivery by ensuring the use of HR data in non-production environments aligns with data security and privacy standards.
- Establish monitoring and assurance activity, including access reviews, privileged access checks, sensitive report monitoring, exception tracking and remediation oversight.
- Support investigation and response activity for HR data security incidents, ensuring issues are identified, escalated, evidenced and remediated in line with applicable procedures.
- Assess new and novel uses of colleague data, including artificial intelligence use cases, and define the conditions under which data may be used securely and appropriately.
To be successful as a HR Data Security Lead, you should have experience with:
Basic/ Essential Qualifications:
- Experience leading data security, access governance or data protection controls in a large, complex data environment, preferably within Human Resources.
- Strong understanding of colleague data, Human Resources processes, data access principles, information classification and data minimisation requirements.
- Knowledge of applicable privacy and data security legislation.
- Ability to assess, challenge and translate data requirements into practical security controls, governance standards and assurance activity.
- Strong stakeholder management skills, with the ability to work across technical, legal, privacy, risk, control and business teams.
Desirable skillsets/ good to have:
- Knowledge of Workday or similar Human Resources security models.
- Understanding of security design within Microsoft technologies and enterprise data platforms.
- Experience supporting artificial intelligence or automation controls for sensitive data use cases.
You may be assessed on the key critical skills relevant for success in role, such as experience with Risk and Control, Change and Transformation as well as job-specific skillsets.
This role will be based in Chennai or Pune.
Purpose of the role
To provide a primary liaison service between the business, technology, and security functions. In order to ensure the confidentiality, integrity and availability of information, and support the mitigation of security risk.
Accountabilities
- Collaboration with stakeholders to understand their security requirements in business processes and IT projects, to enhance overall risk management.
- Execution of risk assessments to identify and prioritise potential cybersecurity threats that could impact the banks operations and data and guide the implementation of mitigation strategies and communicate findings to relevant findings to relevant senior stakeholders.
- Collaboration with business units to develop and implement security policies and procedures for the banks operations aligned to the risk management framework.
- Management of the implementation, testing and monitoring of security controls across the banks IT systems to ensure the effectiveness of controls and mitigation of risk.
- Execution of training content and sessions to educate employees, enhance cybersecurity awareness and provide guidance on safe online practices.
- Management of complex cybersecurity incidents by collaborating with IT teams and response experts to effectively resolve cases through analysis, expertise support and project supervision.
- Identification of emerging cybersecurity trends, threats, and new technologies to address potential risks by advocating the adoption of new security solutions.
Vice President Expectations
- To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures..
- If managing a team, they define jobs and responsibilities, planning for the department’s future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements..
- If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L – Listen and be authentic, E – Energise and inspire, A – Align across the enterprise, D – Develop others..
- OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions..
- Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment.
- Manage and mitigate risks through assessment, in support of the control and governance agenda.
- Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does.
- Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business.
- Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies.
- Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions.
- Adopt and include the outcomes of extensive research in problem solving processes.
- Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes.
All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship – our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset – to Empower, Challenge and Drive – the operating manual for how we behave.