Accessibility Links

Information Security Standards and Design Manager

  • Job reference: ML - 21269
  • Location: City of London
  • Job type: Contract
  • Start date: Not specified
  • Contact: Not specified
  • Sector: Information and Cyber Security
  • Salary: £750 - £850 per day
This vacancy has now expired.

Senior Security Manager (Security Standards and Design)

Leading Asset Manager requires a Senior Information Security manager to Define, build and run a global Security Standards function and contribute to the development and execution of the Global Information Security Programme.

The ideal candidate will have the following experience:

  • Assist with evaluating and implementing security solutions including tools, services and solutions e.g. SIEM, DLP, IDS/IPS, DMZs, IAM/SSO, encryption/PKI, etc.
  • Oversee technical security design across all the companies technology platforms i.e. Internally hosted, IaaS, PaaS, Saas, internal facing, mobile and external facing, and partner business services (if / as required)
  • Assist operational teams in maintaining & enforcing those standards, providing 3rd level support and consultancy
  • Contribute to Security Risk Assessments, with particular focus on vulnerability assessments, including provision of implementation support for risk assessment and data security procedures and products.
  • Assist with the development of secure coding standards and definition of security deliverables as part of the System Development Lifecycle, working with waterfall and Agile/Devops techniques.
  • Champion and oversee design and assurance activities including whitebox and blackbox testing as appropriate, software assurance using static and dynamic code analysis, and pen testing.
  • Document security design standards and procedures as needed.
  • Assist in the maintenance of the security technology roadmap

Skills/Experience

  • Security technology background within an international asset management or similar financial services organisation, covering applications and infrastructure.
  • Awareness of architectural frameworks and experience in applying security architecture principles (e.g. TOGAF, SABSA, etc.) to small or large projects, proven experience analysing successful HLDs and LLDs.
  • Expertise in security technologies - such as SIEM, DLP, IDS/IPS, DMZs, IAM, SSO, PKI, cloud security, network security, application security, etc.
  • Familiarity with industry-standard security and risk frameworks including ISO27000, NIST, COBIT, ISF, SANS, etc. and with common financial services industry practice, to assist with calibrating control strengths
  • Deep familiarity with common financial services technologies e.g. Microsoft, Checkpoint, VMWare, Citrix, Bloomberg etc.
  • Ability to apply security skills to multiple platforms including internally-hosted, IaaS, PaaS, SaaS, and mobile/digital services.
  • Familiarity with common security assessment tools (e.g. BURP, Nessus, Qualys, etc.)
  • Experience using SAST and DAST tools including results interpretation, developer community support etc.
  • Ability to provide formal and informal leadership across the security domain, a demonstrable history of building and leveraging relationships to create enterprise outcomes
  • Able to work in an international matrix organisation with complex and dynamic drivers and constraints
  • Comfortable with a fast paced, global, multi-threaded matrix working environment.

Should you be interested, please do not hesitate to contact Molly Lamb at Molly.Lamb@lafosse.com (02079321644) or aplpy directly to the advert.

Related jobs
Senior IT Security Engineer
  • Permanent
  • Croydon
  • £60000 - £75000 per annum
  • Reference 24168
  • The Senior Security Engineer will provide technical and functional leadership to the security engineering team. You will be responsible for all security tooling and oversee Vulnerability management service. Working with third parties you will continue to improve and mature IT security services delivered and engineering...
Read more
IT Security Solutions Team Lead
  • Permanent
  • Croydon
  • £80000 - £90000 per annum
  • Reference 25210
  • The Security Solutions Team Lead will acts as the primary interface to the business for CISO for all project and change programmes. Responsible for providing expert advice and guidance to all areas of the business on Information Security. Documents information security risk assessments identifying any issues or risks...
Read more
Access Management Analyst
  • Contract
  • City of London
  • £300 - £300 per day
  • Reference ML 24518
  • Access Management Analyst The Access Management Analyst is responsible for the management and protection of the Investment Management firms computer applications/systems and associated data from unauthorized and inappropriate access. The ideal candidate will have the following experience: Ownership...
Read more