IT SECURITY HEAD

Location:
London
Job Type:
Contract
Industry:
Cyber Security
Job reference:
BBBH156748_1655199898
Posted:
almost 2 years ago


POSITION: HEAD OF IT SECURITY
LOCATION: LONDON (HYBRID 2 DAYS ON SITE)
TYPE: CONTRACT
RATE: UP TO £720 P.D. OUTSIDE IR35

OVERVIEW

The Head of IT Cyber Security Manager will provide IT Security advice and assurance to the IT Department through the definition, design, implementation and of the IT security environment and associated services and applications. This includes responsibility to identify and remedy IT Security risks during project design and operational running of applications, systems and the IT environment. The role also has to balance competing stakeholder needs and achieve the best outcome for the Bank in the delivery of strategic and tactical IT Security initiatives and solutions.

ABOUT THE ROLE

The role sits within the IT Security and Business Continuity team, who are responsible for protecting the Confidentiality, Integrity, and Availability of the Bank's information assets. This includes delivery of activities that support the Cyber Strategy, establishing and implementing IT Security Policy, Procedures, Standards, and the management and operation of IT Security technology and tools across the project estate.

The role will involve day-to-day provision of services and deliverable.

Though the primary focus of the role is IT Security, the role will also work closely with, and be influential to the Operational Risk and Information Security team.

SCOPE OF SERVICES

  • Working with third parties to establish and implement the baseline for IT Security controls
  • Ensuring that assurance over IT & Information Security control implementation can be provided
  • Establish, implement and maintain a suite of IT Security tools to protect IT systems and give visibility of potential threats and vulnerabilities.
  • Development of clear and concise reporting suitable for presentation to IT Management. This includes submissions of regular Key Risk Indicator reports that can be used to prioritise IT Security activities.
  • Ensure key IT Security deliverable are addressed within agreed timescales.
  • Facilitate and manage appropriate vulnerability assessments and manage the remediation activity.
  • Work closely with members of Operation Risk and Information Security to ensure IT Security and associated risks are appropriately identified and managed.
  • Provide expertise in the definition, selection and implementation of IT Security related controls to the IT Department.
  • Provide guidance and assistance to IT Senior Management and other areas within the Bank with regard to addressing IT Security issues.
  • Manage and promote IT Security to ensure that the business understands the value of best practice and supports the key IT Security objectives.


KNOWLEDGE / EXPERIENCE

  • Extensive understanding and implementation of the IT Security environment, policies, guidelines and standards, including ISO 27001/2
  • Educated to honours degree level and/or a relevant and recognised IT Security accreditation,
  • Production of Cyber and IT Security strategies
  • Technical and architectural knowledge of Microsoft Windows, Client and Server and Microsoft Azure Infrastructure services
  • Technical knowledge of Microsoft security and identity technologies, such as Active Directory, Azure Active Directory, PKI and certificate management, IPSec, VPN, DirectAccess, Azure Rights Management Services and Windows Defender.
  • Broad understanding of corporate IT infrastructures and technologies.
  • Demonstrable experience of successfully operating within an IT Security team.
  • Demonstrable knowledge of technical security solutions covering areas such as data leakage, anti-malware, vulnerability management, threat assessment, encryption and PKI.
  • Relevant experience in the Financial Services sector.
  • Ability to handle pressure and work to challenging deadlines.
  • Scope of services successfully transitioned to third party provider and knowledge transfer complete.



TECHNICAL SKILLS

  • Experience of Service Now.
  • Desired knowledge of Firewall Technologies, End Point Protection, Malware Protection.
  • Experience of Data Loss Prevention and Security Information and Event Management tools.
  • Good working knowledge and understanding of (with particular emphasis on IT Security aspects) in the following areas: server virtualisation, VMware, W2K12 & W2K16, Windows 10, HP UX, RedHat Linux and Oracle, NetApp storage consolidation, Cisco Networking
  • Experience of MS O365 and MS Azure
  • Experience of working on cloud transformation projects
  • Experience of Data Loss Prevention and Security Information and Event Management tools.
  • Experience of the following applications: TripWire, McAfee, ForcePoint, Checkpoint, LogRhythm, Qualys, Netwrix, FireMon, BeyondTrust Password Vault, FireEye.
  • Ability to operate sensitively and effectively in a multicultural environment.
  • Ability to communicate effectively to a wide variety of audiences both within and outside of the company
  • Ability to handle pressure and work to challenging deadlines.
  • Ability to work both independently and as part of a team.
  • Good team player with strong interpersonal and diplomatic skills.
    • Fluency in oral and written English is essential.
    • Good organisational and multi-tasking skills.


DUE TO HIGH VOLUME WE WILL ONLY BE ABLE TO RESPOND TO APPLICATIONS THAT SUIT THE CRITERIA

Back job search
Back to Search Results
.