Security Consultant

Embark on a transformative journey as a Security Consultant at Barclays, where you'll lead the evolution of our digital landscape, driving innovation and excellence. You will utilize cutting-edge technology to enhance our digital offerings, ensuring exceptional customer experiences.

To be successful as a Security Consultant, you should have or be able to:

• Technical awareness with a working understanding of computer networks, operating systems, databases, websites, and architectural principles.
• Strong written and verbal reasoning skills – comfortable with technical writing and review.
• Ability to work as part of a team.

Additional valued skills/knowledge/experience may include:

• Current security certification CISSP (preferred).
• Experience with PCI-DSS.
• Experience in software development or business analysis, including awareness of OWASP.

This role will be based in the Knutsford office.

To enable ‘secure by design’, supporting the bank’s change programmes, designing and implementing secure systems and architectures across various security domains, including data security, security risk management, asset security, security architecture and engineering (including cloud security), communications and networks, security operations, software development, security assurance testing, and identity and access management (IAM).

• Oversee technology change governance within control functions or security guilds.
• Conduct security risk assessments and develop threat models during the change and development lifecycle to identify vulnerabilities, embedding security controls and countermeasures to enhance security posture and resilience against cyber threats.
• Facilitate DevSecOps practices by engaging early with stakeholders seeking security advice, influencing security strategies to support business and technology evolution.
• Provide security reviews for third-party technology products and services, supporting the CISO, CIO, and product teams.
• Transfer residual risks in accordance with the bank’s enterprise risk management framework.
• Support incident response and investigations by sharing security insights with relevant teams.
• Develop and maintain security policies, standards, and procedures aligned with risk tolerance, regulatory requirements, and industry best practices.

• Perform activities promptly and to high standards, fostering continuous improvement.
• Possess in-depth technical knowledge and experience in their area of expertise.
• Lead and support team development, allocate work, and coordinate resources.
• If in a leadership role, demonstrate leadership behaviors (Listen, Energize, Align, Develop).
• Develop technical expertise and act as an advisor in their work area.
• Impact related teams and partner across functions.
• Take responsibility for operational results and escalate policy breaches appropriately.
• Embed new policies and procedures for risk mitigation.
• Advise on decision-making, manage risks, and ensure compliance with rules and regulations.
• Understand how their sub-function contributes to organizational objectives.
• Make evaluative judgments, resolve problems, and communicate effectively with stakeholders.

All colleagues are expected to embody the Barclays Values of Respect, Integrity, Service, Excellence, and Stewardship, and to demonstrate the Barclays Mindset—Empower, Challenge, and Drive.