About Us

BACB is a UK bank that offers trade finance and investment expertise to clients in specialist markets, especially Africa and the Middle East.

We have been helping businesses with trade finance and complementary products for over half a century, focusing on trade flows to and from Africa and the Middle East as well as real estate in the UK.

Our in-depth knowledge of the countries and practices where our clients operate ensures that we put them first.

Additional Info

• Hybrid Working: 3 days onsite, 2 from home
• Location: City of London
• Contract Type: Year in industry placement 
• Length: 1 year

If you are ready to kick-start your career and gain hands-on experience in a dynamic, and engaging environment then BACB maybe the right place for you. 

This is a 1 year paid placement for penultimate year university students

Our year in industry programme is designed to provide our interns with valuable industry exposure, real world projects, and mentorship from experienced professionals. 

Job Summary

Reporting to the Head of Information Security and working within the Risk team, the role will provide support across the Bank’s information security practice. The role will involve learning about and leveraging various specialist enterprise information security tools to monitor, investigate and report on incidents and vulnerabilities, as well as helping to ensure adherence to the Bank’s policies and standards

Key Work Outputs and Accountabilities

• Assist with the delivery of the Bank’s strategic Cyber Security roadmap and maintaining regulatory compliance
• Become knowledgeable to support other members of the security team to advise and guide the IT team as to effective ways of operating the Bank’s diverse security tooling
• Help to generate security performance metrics and KRIs and KPIs
• Help to ensure that the Bank can effectively respond and recover from Cyber security incidents
• Become knowledgeable in the Banks network and systems to help create an accurate security topology
• Assist is executing and reporting on Phishing simulations
• Assist in the delivery of the relevant Risk and Control Assessments related to technology and cyber risk.
• Become knowledgeable around topics such as threat intelligence, vulnerability management, penetration testing, and cyber simulations
• Assist Information Security Manager in performing due diligence on new and existing vendors who could potentially access sensitive data on the Banks customers or staff
• Attend the Change Advisory Board (CAB) raising any questions or concerns on changes that could weaken or adversely affect the Banks security posture
• Assist in building relations so that other teams in the Bank adopt a security by design and default mind set
• Build awareness of regulatory requirements set by the Banks regulators such as the Financial Conduct Authority (FCA) and the Prudential Regulatory Authority (PRA) and of new regulations such as DORA.
• Stay ahead of emerging threats that could harm the Bank such as AI-driven Phishing, hacking groups targeting financial services, supply chain attack, insider threat, and iOT compromise
• Work closely with the Cyber Operations Team, Technical Services Group, and the System Operations Group

Required Qualifications and Experience

Knowledge:

Educated to a degree level (or equivalent) ideally in computer science or a related field. We also welcome applications from candidates who are currently pursuing such qualifications.

• Familiarity with internationally recognised IT Security standards and frameworks such as Cyber Essentials, NIST, or ISO27001/2.
• Understanding of how IT Security tooling such as Firewalls, AV, Proxies and IDS/IPS operate.
• Familiar with the Microsoft stack including desktops, servers and cloud services.
• Understanding of Patching and Vulnerability management.

A strong interest in Information Security is essential.

We value a proactive attitude and a willingness to continuously develop new skills.

Experience:

Ability to effectively utilise core MS Office systems (Word, Excel, Outlook etc.)

Working collaboratively within a team to produce deliverables.

Have successfully conducted research and self-teaching to develop knowledge on technical topics.

Skills:

Ability to work and communicate effectively in a team.

Good time management skills with the ability to work to deadlines.

The role holder must be self-motivated, able to work on their own initiative and liaise effectively with professional staff and customers throughout the business.

Good oral and written communication skills.