Accessibility Links

Information Security Standards and Design Manager

  • Job reference: ML - 21269
  • Location: City of London
  • Job type: Contract
  • Start date: Not specified
  • Contact: Not specified
  • Sector: Information and Cyber Security
  • Salary: £750 - £850 per day
This vacancy has now expired.

Senior Security Manager (Security Standards and Design)

Leading Asset Manager requires a Senior Information Security manager to Define, build and run a global Security Standards function and contribute to the development and execution of the Global Information Security Programme.

The ideal candidate will have the following experience:

  • Assist with evaluating and implementing security solutions including tools, services and solutions e.g. SIEM, DLP, IDS/IPS, DMZs, IAM/SSO, encryption/PKI, etc.
  • Oversee technical security design across all the companies technology platforms i.e. Internally hosted, IaaS, PaaS, Saas, internal facing, mobile and external facing, and partner business services (if / as required)
  • Assist operational teams in maintaining & enforcing those standards, providing 3rd level support and consultancy
  • Contribute to Security Risk Assessments, with particular focus on vulnerability assessments, including provision of implementation support for risk assessment and data security procedures and products.
  • Assist with the development of secure coding standards and definition of security deliverables as part of the System Development Lifecycle, working with waterfall and Agile/Devops techniques.
  • Champion and oversee design and assurance activities including whitebox and blackbox testing as appropriate, software assurance using static and dynamic code analysis, and pen testing.
  • Document security design standards and procedures as needed.
  • Assist in the maintenance of the security technology roadmap

Skills/Experience

  • Security technology background within an international asset management or similar financial services organisation, covering applications and infrastructure.
  • Awareness of architectural frameworks and experience in applying security architecture principles (e.g. TOGAF, SABSA, etc.) to small or large projects, proven experience analysing successful HLDs and LLDs.
  • Expertise in security technologies - such as SIEM, DLP, IDS/IPS, DMZs, IAM, SSO, PKI, cloud security, network security, application security, etc.
  • Familiarity with industry-standard security and risk frameworks including ISO27000, NIST, COBIT, ISF, SANS, etc. and with common financial services industry practice, to assist with calibrating control strengths
  • Deep familiarity with common financial services technologies e.g. Microsoft, Checkpoint, VMWare, Citrix, Bloomberg etc.
  • Ability to apply security skills to multiple platforms including internally-hosted, IaaS, PaaS, SaaS, and mobile/digital services.
  • Familiarity with common security assessment tools (e.g. BURP, Nessus, Qualys, etc.)
  • Experience using SAST and DAST tools including results interpretation, developer community support etc.
  • Ability to provide formal and informal leadership across the security domain, a demonstrable history of building and leveraging relationships to create enterprise outcomes
  • Able to work in an international matrix organisation with complex and dynamic drivers and constraints
  • Comfortable with a fast paced, global, multi-threaded matrix working environment.

Should you be interested, please do not hesitate to contact Molly Lamb at Molly.Lamb@lafosse.com (02079321644) or aplpy directly to the advert.

Related jobs
Security Engineer (Varonis)
  • Contract
  • London
  • £450 - £550 per day
  • Reference 25710 - ML
  • Security Engineer (Varonis) Financial Services Firm require a Security Engineer with experience implementing insider threat software solutions. The security tool being implemented is Varonis and therefore experience implementing Varonis is essential. The Varonis Security Engineer will have the following experience:...
Read more
Information Security Manager
  • Permanent
  • London
  • £60000 - £70000 per annum + bonus + package
  • Reference 25806
  • Information Security Manager -> £60,000 - £70,000 + bonus + package Location: Central London A global fintech business is in need of an Information Security Manager to join its team to assist in the delivery of the Information Security program. Working closely with the Head of Information Security...
Read more
Security Analyst
  • Contract
  • London
  • £550 - £550 per day
  • Reference ML - 26225
  • Security Analyst Luxury Retailer requires a Technical Security Analyst with an extensive Threat and Vulnerability skill set to support their Security Threat & Vulnerability Management service to understand and mitigate threats and vulnerabilities relevant to the enterprise. The Security Analyst will have the...
Read more