Security Architecture and Assurance Manager

2018-06-07 14:51:131970-01-01Via Resource
Job Type Permanent Full Time
Area London, United Kingdom
Sector Financial Services
Salary £90,000
Start Date
Job Ref CXE 561
Description
The Security Consulting Manager is responsible for ensuring organisational assets are secured appropriately based on their importance to the organisation. This is a management role and as a result the role holder is responsible for the management of a team of specialists who also carry out the below functions. 
 
INFORMATION SECURITY
  • To provide advice and guidance on how to minimise the impact to the Bank of potential threats to the network or assets
  • To liaise with potential or current partners and suppliers to the Bank and evaluate the information security levels of the company or products.
  • As required assist and provide guidance to the ServiceDesk and Infrastructure engineers in the event of a Security alert.
  • As required investigate the vulnerability of the Bank to potential malicious attacks and recommend defensive actions.
 
POLICY, STANDARDS, PROCEDURES AND GUIDLINES
  • To ensure that information security policies are implemented, enforced, monitored and complied with and to ensure the Bank embraces a culture of Information Security.
  • To develop and ensure data security procedures are approved that provide the more detailed steps that service areas need to adhere to in order to implement that data security policies.
 
RISK MANAGEMENT
  • To work with Infrastructure Solution Architects and advice on all Information Security Risks with regards to infrastructure, changes to processes or software implementations.  To critique the high and low level designs within projects. Working on all such projects throughout their lifecycle to ensure the Bank meets compliance and regulatory requirements.
  • To ensure that regular risk assessments are completed in departments and the results are recorded.
  • To assist in taking timely action resulting from any risk assessment recommendations.  This may involve liaison with other departments, partners or suppliers.  It is essential to keep the IT Security department informed if there are any issues of non-compliance.
 
KEEP ABREAST OF DATA SECURITY TRENDS
  • Be aware of current and possible future trends in information security and take into account current Bank procedures, to define and develop procedures and policies for appropriate and secure use of the Bank’s IT systems.
  • Adherence to standards, including ISO27001 and Information Technology, PCI-DSS and Infrastructure Library (ITIL)
 
 
APPLICATION OF KNOWLEDGE, PROBLEM SOLVING & INNOVATION
 
The role holder must apply knowledge of industry best practices including NIST, PCI DSS, ISO27001 and any other applicable standards to ensure organisational assets are protected appropriately. In order to do this they must embed themselves into project and change teams to ensure all decisions relating to solution design or adaptation does not impact the security posture of the organisation.
 
The role holder must ensure that problems are approached in a pragmatic and risk focussed manner. Problems could be technically complex and require research and exploration of various possible solutions. The Information Security specialist will consult with design teams to ensure security requirements are delivered alongside functional requirements.
 
An example of a complex problem could be that due to legacy issues, encryption is not possible. The Specialist must therefore explore all possible other solutions to reduce the likelihood of a data confidentiality breach such as access control, isolation, auditing and so on.
 
 
INTERACTION
 
The communication requirements of this role are varied and can include the below:
Internal project sponsors across the business and IT.
ExCo members regarding day to day security expectations(Awareness).
Third party vendors and security consultancies and penetration testing partners.
Third party suppliers as part of 3rd party risk management/solution review.
 
IMPACT
 
The role holder is responsible for fostering a knowledge sharing environment across the team supporting other team members with peer reviews as well as technical support on new/weaker subject matter.
They will be required to ensure information security strategy is supported and where appropriate implemented. The delivery of this strategy will support the organisation’s strategy and ensure that we put our customers first by protecting their information. They are also required to support the organisation’s objectives around efficiency of spend, particularly in relation to new products/solutions.
 
 
asdf
Apply Later
Sign in
Register
Apply
Later
Similar Jobs
  • Incident Response Team Lead
    United Kingdom , South East , Kent
    Financial Services

    Via Resource is a specialist recruitment company. Our expertise lies in the industries of information and cyber security - working with global brands, security consultancies and infrastructure/software vendors across Europe. We've been excelling in this fast-paced industry for more than 8 years,...
Email Me Jobs Like This
Subscribed to similar jobs notifications

Contact

 

Via resource Group
Braywick House West
Windsor Road
Maidenhead
SL6 1DN
United Kingdom

+44 0203 327 1996

We use cookies to provide you with the best possible browsing experience on our website. You can find out more below.
Cookies are small text files that can be used by websites to make a user's experience more efficient. The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission. This site uses different types of cookies. Some cookies are placed by third party services that appear on our pages.
+Necessary
Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
ResolutionUsed to ensure the correct version of the site is displayed to your device.
essential
SessionUsed to track your user session on our website.
essential
+Statistics
Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.
Google AnalyticsGoogle Analytics is an analytics tool to measure website, app, digital and offline data to gain user insights.
Yes
No

More Details