Enable job alerts via email!
Information Security Risk Specialist
Barclay Simpson
Ipswich
Hybrid
GBP 60,000 - 80,000
Full time
Job summary
A leading financial services firm in Ipswich seeks an Information Security Risk Specialist. This role involves assessing security requirements for technology projects, ensuring compliance with internal standards, and collaborating with cross-functional teams. Key functions include reviewing security designs and managing project risk documentation. Strong understanding of information security governance and excellent communication skills are essential. Competitive compensation is offered.
Qualifications
- Strong understanding of information security governance and project risk management.
- Experience working with architecture, cyber assurance, and resilience teams.
- Knowledge of security assessment, cloud security, and vulnerability management.
- Excellent communication and stakeholder engagement skills.
Responsibilities
- Review and assess Information Security Criticality Assessments to determine project risk and security requirements.
- Collaborate with architects and cross‑functional teams to finalize security controls in solution designs.
- Ensure alignment with Operational Resilience and Cyber Security standards.
- Review and validate security deliverables including ISCA questionnaires and High‑Level Designs.
- Manage project security documentation, evidence storage, and reporting tools.
- Provide security sign‑off at project stage gates and prepare closure reports.
- Track and report project risk status, escalating amber/red issues.
- Support risk acceptance processes and advise teams on secure design decisions.
Skills
Information Security Risk Specialist required for global financial services firm. You will support secure delivery across technology projects. The role focuses on assessing project security requirements, reviewing designs, and ensuring compliance with internal security and resilience standards.
- Review and assess Information Security Criticality Assessments (ISCA) to determine project risk and security requirements.
- Collaborate with architects and cross‑functional teams to finalize security controls in solution designs.
- Ensure alignment with Operational Resilience and Cyber Security standards.
- Review and validate security deliverables including:
- ISCA questionnaires and High‑Level Designs (HLD)
- Technical and Solutions Design Authority reviews
- Third‑party risk evaluations and IAM assessments
- Security baseline, code review, vulnerability, and penetration test reports
- Manage project security documentation, evidence storage, and reporting tools.
- Provide security sign‑off at project stage gates and prepare closure reports.
- Track and report project risk status (RAG), escalating amber/red issues.
- Support risk acceptance processes and advise teams on secure design decisions.
- Strong understanding of information security governance and project risk management.
- Experience working with architecture, cyber assurance, and resilience teams.
- Knowledge of security assessment, cloud security, and vulnerability management.
- Excellent communication and stakeholder engagement skills
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
