Job Description

The successful candidate will show a passion for security, have meticulous attention to detail, outstanding problem-solving skills, work comfortably under pressure and deliver on rapidly changing deadlines.

You will be responsible for:

Determine appropriate levels of security controls, systems monitoring and security audits.

Develop and supervise all technical IT Security measures in place within the company.

Act as a point of escalation for security issues.

Guide the infrastructure teams with prioritizing patches and security fixes.

Investigate suspected attacks and help manage security incidents.

Assisting with the development and implementation of security policy, standards, guidelines and procedures to ensure ongoing improvement and maintenance of security posture.

Work with external consultants as appropriate for independent security reviews and compliance audits.

Supporting security risk modelling and vulnerability assessments for defined business applications or IT installations in defined areas and provides advice and guidance on the application and operation of physical, procedural and technical security controls.

Maintaining documentation at a high standard.

Collaborating with the wider team to balance IT security controls to protect sensitive data without impacting productivity.

Encouraging collaboration between the Information Security Team and all other teams in the business to ensure we deliver innovative services.

This job description is not intended to be an exhaustive list of responsibilities. The job holder may be required to complete any other reasonable duties in order to achieve business objectives.

It would be a bonus if you also had:

An understanding of the OWASP Top 10 Vulnerabilities for Mobile and Web Applications.

Person Specification:

Strong interpersonal skills

A self-starter with initiative who takes accountability

You should be passionate about your chosen technology field.

attention to detail

Perseverance and the ability to drive projects to completion.

Patient and calm under pressure.

Enjoy working with a team.

Excellent communication skills.

Building working relationships

Be inspiring, motivating and involved

Initiating action

Aligning performance for success

Required Knowledge, Skills, and Abilities

Security accreditations: SSCP or other certification (CISSP, MCSE, CCNA, CCSA, CEH, CISM, ISO auditor). Detailed technical knowledge of vulnerabilities, threats, attack methods, and infection vectors and how to mitigate/remediate. In-depth technical experience working with a multitude of security products and hardware (e.g. ObserveIT, Palo Alto Networks, Cloud Access Security Brokers, Forcepoint). A solid foundation in computer networking fundamentals & security control, firewalls, routing and the various threats applicable to the various OSI Networking layers. Demonstrable understanding of DLP/IDS/IPS technologies, ability to construct custom signatures and investigate intercepted traffic/logs. Understanding of Azure Cloud Security A good working knowledge of security, privacy (DPA) and compliance law and standards including ISO27001:2013