Web Proxy Principle Engineer

What you'll do: As a Security Analyst, you'll assess, triage and respond proactively and effectively to security related threats, incidents, requests and events to defend assets, information, and systems from unauthorised access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction. You'll be collaborating with internal and external colleagues, specialists and stakeholders to make sure activities relating to incident response, user access, alert monitoring, root cause analysis and scenario planning are completed in line with standard operating procedures and to a high standard. We're looking for someone with experience of strategic security programme design and delivery, as well as good knowledge of risk management framework. You'll need a comprehensive understanding of the first, second and third lines of defence roles and responsibilities and how these are managed in Security. We'll also look for the ability to work with limited supervision, and proactively build relationships with different functions to support security risk management.

• We'll look to you to understand industry and technology trends and causal factors of incidents, driving actions to minimise the likelihood and impact of anticipated future incidents
• You'll be undertaking a proactive role to anticipate and identify security events, incidents and trends that could adversely impact the bank, our customers, colleagues or assets
• It's a chance to have a tangible effect on our function, put your existing skills to the test and advance your career
• Making sure that decisions made are based on robust data, return on investment and value measures that demonstrate thoughtful and intelligent cost management
• Encouraging the identification of ideas and driving the delivery of initiatives that will reduce cost and simplify the bank
• Building and leveraging relationships with colleagues across the bank, and third parties, to make sure that decisions made are commercially focused and create long term value for the bank
• Carrying out and contributing to root cause analysis on security incidents and events
• Conducting training and scenario planning to prepare for and anticipate future events, and to minimise future reoccurrences

• Experience of strategic security programme design and delivery, with good knowledge of risk management framework
• Comprehensive understanding of the first, second and third lines of defence roles and responsibilities and how these are managed in Security
• Ability to work with limited supervision and proactively build relationships with different functions to support security risk management
• Excellent planning and organisational skills, strong financial awareness, and proven management abilities
• Ability to perform effectively under pressure, manage multiple priorities and meet tight deadlines
• Exceptional written and verbal communication skills, with the confidence to engage at all levels of the organisation
• Proven track record in managing diverse risk concerns and chairing meetings to drive collaborative, resolution-focused outcomes
• Strong knowledge of proxy architectures and core networking protocols, including TCP/IP and HTTP/HTTPS
• Strong background in network security, including web filtering, SSL inspection, and Data Loss Prevention (DLP)
• Expertise in proxy server architecture, deployment of best practices, and optimising performance
• Previous working knowledge of policy creation and migration, such as URL filtering and access control
• Significant experience of cloud-based proxy environments
• Ability to mentor & coach junior members of the team
• Proactive and professional approach to thinking in often challenging situations and environments