We are working with a London-based organisation that has started an exciting journey to build their Cyber Security function from the ground up. This is a rare opportunity to take a leading role in shaping the security strategy for a global company.
We are looking for someone strong in product and application security and work closely with engineers to embed Secure by Design in DevOps environments and drive security projects.
KEY ACCOUNTABILITIES & RESPONSIBILITIES
* Own the InfoSec relationship with identified portfolio(s) of change
* Identify when your portfolio(s) requires additional InfoSec support from areas such as Security Architecture, Security Design or Security Engineering and broker the engagement
* Provide security requirements and guidance into the change activities
* Responsible for ensuring Threat Modelling is in place for the identified programs, projects, engineering
* Work with GRC to inform on risk, compliance and assurance with regard to your portfolio of change
* Work with Security Culture to ensure alignment on culture topics and messaging to identified recipients
* Supporting and providing technical mentorship to team members
* Ability to work within complex technical / security environments and communicate effectively with peers in other teams and nontechnical key stakeholders
Required Skills
+ Network Security
+ Application Security
+ Infrastructure Security
+ Cloud Security
* Clear understanding and experience of risk assessment and compliance frameworks.
* 6 years in technology with at least 2 years' experience delivering advanced level security engineering or similar role.
* Familiar with implementing frameworks such as NIST, ISO, DORA, etc.
* Previous experience in a hands on software engineer role, working in Appsec and Cloudsec
* Strong understanding of Azure
If you have any questions or want to know more then please message me directly or hit the apply button!