Enhance the Security Posture of our Organisation
* This critical role involves collaborating with the domain lead to define the product backlog and analysing a diverse range of security information.
* As our Security Consultant, you will provide expert advice and guidance on the most effective strategies to manage and mitigate security risks.
* You will also have the opportunity to expand your security knowledge and engage with a broad spectrum of stakeholders across the bank.
Your Key Responsibilities
Utilising your extensive knowledge of security specialisms and appreciation for franchise strategies and objectives, you will contribute to ensuring a robust security environment across our centres of excellence and domains.
We expect you to develop appropriate security strategies by understanding customer needs and business demands while maintaining organisational system health and security.
Your key tasks will include:
* Serving as a liaison with security experts when necessary.
* Enabling a culture of continuous improvement by promoting the benefits of security and working closely with teams to reinforce domain resilience.
* Analysing business requirements, technical solutions or processes to identify security-related risks and providing guidance on how they can be effectively managed.
* Evaluating decisions based on robust data, return on investment, and value measures that demonstrate thoughtful and intelligent cost management.
* Establishing relationships with colleagues across the bank to ensure decisions are commercially focused and create long-term value for the organisation.
The Skills You'll Need
You will require the ability to conduct security assessments of internal and external Information Security Threat environments, including applications, infrastructure, and business units. You will also need in-depth Information Security experience to understand and advise on the identification and management of Information Security risks and mitigation in relation to technical infrastructure and applications.
We expect you to possess:
* The ability to comprehend, prioritise, and assist in developing and implementing solutions for Functions and Franchises to reduce and close Security gaps between risk appetite and current risk position based on an understanding of regional regulatory requirements to support compliance across the region.
* Knowledge of networking and associated infrastructure components.
* Experience with cloud platforms AWS, Azure, and GCP.
* Knowledge and experience with vulnerability tools such as Qualys, AWS Security Hub, and Gitlab.