Enable job alerts via email!
Technical Information Security Consultant
Barclay Simpson
London
On-site
GBP 60,000 - 80,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
An established industry player in financial services is seeking a Technical Information Security Consultant to enhance security within their DevOps processes. This pivotal role involves collaborating with DevOps and Engineering teams to ensure that security is seamlessly integrated throughout the project and development life cycles. The ideal candidate will possess expert knowledge in DevSecOps, Security Governance, and Cloud Security, with a strong focus on threat and vulnerability management. This is an exciting opportunity to make a significant impact in a dynamic and fast-paced environment, where your expertise will help shape the future of security practices in the organization.
Qualifications
- Expert knowledge of DevSecOps and Security Governance.
- Strong knowledge of threat & vulnerability management.
Responsibilities
- Act as the main security point of contact and SME.
- Conduct risk assessments and security design reviews.
- Embed security within DevOps processes and provide advisory services.
Skills
Tools
Job description
Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into the DevOps process. There will be a focus on working closely with DevOps and Engineering teams and providing security assurance throughout project and development life cycles. Responsibilities:
- Act as the main security point of contact & SME
- Conduct High Level & Low-Level technical risk assessments
- Conduct document and conceptual design reviews
- Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation
- Embedding security within DevOps (eg CI/CD pipelines), developing security requirements
- On-demand Security assessment of various components like Web apps, Containers, Platforms etc
- Reviewing security assessment reports and create a remediation pipeline
- Experience in web application security assessments like SAST, DAST etc.
- Act as the Security subject matter expert within Agile/waterfall project planning, development, and execution
- Obtain and review all required artefacts as part of the application security framework
- Drive security evaluation early in the cycles through iterative security testing
- Provide advisory services and direction to development teams during development cycles
- Manage control exemptions/remediations identified through projects
- Advise on external regulatory requirements
- Provide metrics for relevant areas of responsibility when required
- Challenge stakeholders to ensure security is efficiently delivered
- Mediate between development and security teams to facilitate business
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
