Job Title: Manager Infrastructure Security
Function: CIO
Location: London or Edinburgh - Hybrid Working
At TSB we’re all here to give money confidence to our customers and communities. Wherever you work in TSB you can make a real difference to your career, our business, and the wider community.
We’re transforming the service we provide our customers, and technology will be at the forefront of that change. It’s an exciting transformation and we’re investing in an enhanced in-house capability to deliver it – so, if you’re a forward-looking and innovative IT professional, this is your opportunity to be in on the ground floor and help us build the future of banking.
How you’ll make a difference
We're looking for someone passionate about understanding and securing the infrastructure that supports TSB services and operations. You’ll be working in a team of cyber security SMEs and responsible for leading vulnerability assessment, remediation secure build and configuration of the assets which make up the TSB infrastructure estate, including data centre, cloud, networks and office/branch. You will make a difference in your role by supporting the implementation of Infrastructure & Cloud security strategy, policy, controls, services, metrics and compliance. You will also support on vulnerability management, WAF, DDoS and Firewall strategy, policy, controls, services, metrics and compliance for the on-premise and cloud estate.
What you’ll bring
1. A significant level of recent experience in offensive / defensive techniques and awareness of any open-source framework such as OWASP, CVSS etc.
2. Recently took lead in the delivery and maintenance of networking and network security devices both on premise and in corresponding capabilities in cloud service providers.
3. A good depth of practical knowledge and understanding of current DDoS and WAF protection measures.
4. Through a track record of delivery as a lead: you hold a comprehensive, understanding of the current best practices within infrastructure vulnerability management, evaluation and prioritisation
5. Good awareness of the concepts of micro segmentation.
6. Full technical capability to take lead in getting hands on in operating & optimising the tooling in place to implement the Vulnerability / Firewall / WAF & DDoS solutions.
7. Able to demonstrate their proven track record of hands-on delivery experience at the lead level
8. Proven track record of experience in managing a team of Information Security resources, directing, and prioritising their workload in order to deliver against business objectives.
9. Preferably a degree in an Information Security related discipline, or have certifications such as CISM, CISSP, CSSLP or equivalent.
10. Ability to track and report on non-compliance remediation and take accountability for driving remediation.
11. Ability to review vulnerabilities and assess prioritisation/impact based on common risk exception and mitigation concepts.
12. Experience of providing regular briefing and reporting to senior stakeholders, both technical and non-technical, on information security status and progress
What we offer in return
13. Hybrid and flexible working arrangements to support a healthy worklife balance
14. An attractive reward and myTSB benefits package, giving you more of what matters to you
15. A diverse, energising, and collaborative working environment
16. A career that's enriching and full of opportunity
We Are TSB, Life Made More.
#Li-GN1
Inclusion matters at TSB. We want our colleagues to feel at home here, no matter their background. Diverse teams are what helps us deliver Money Confidence. For everyone, Every day.
Did our job advert catch you eye, but you don't meet all the requirements? Don't let that put you off. If you meet some of the requirements and have an open curious mindset, we'd love to hear from you.