Web Proxy Principle Engineer

Join us as a Security Analyst

• We’ll look to you to understand industry and technology trends and causal factors of incidents, driving actions to minimise the likelihood and impact of anticipated future incidents
• You’ll be undertaking a proactive role to anticipate and identify security events, incidents and trends that could adversely impact the bank, our customers, colleagues or assets
• It’s a chance to have a tangible effect on our function, put your existing skills to the test and advance your career

As a Security Analyst, you'll assess, triage and respond proactively and effectively to security related threats, incidents, requests and events to defend assets, information, and systems from unauthorised access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction.

You’ll be collaborating with internal and external colleagues, specialists and stakeholders to make sure activities relating to incident response, user access, alert monitoring, root cause analysis and scenario planning are completed in line with standard operating procedures and to a high standard.

You’ll also be:

• Making sure that decisions made are based on robust data, return on investment and value measures that demonstrate thoughtful and intelligent cost management
• Encouraging the identification of ideas and driving the delivery of initiatives that will reduce cost and simplify the bank
• Building and leveraging relationships with colleagues across the bank, and third parties, to make sure that decisions made are commercially focused and create long term value for the bank
• Carrying out and contributing to root cause analysis on security incidents and events
• Conducting training and scenario planning to prepare for and anticipate future events, and to minimise future reoccurrences

We're looking for someone with experience of strategic security programme design and delivery, as well as good knowledge of risk management framework. You'll need a comprehensive understanding of the first, second and third lines of defence roles and responsibilities and how these are managed in Security. We'll also look for the ability to work with limited supervision, and proactively build relationships with different functions to support security risk management.

To be successful in this role, you’ll require excellent planning and organisational skills, strong financial awareness, and proven management abilities. You’ll need to demonstrate the ability to perform effectively under pressure, managing multiple priorities and meeting tight deadlines. Exceptional written and verbal communication skills are essential, with the confidence to engage at all levels of the organisation, from frontline staff to senior leadership. A proven track record in managing diverse risk concerns and chairing meetings to drive collaborative, resolution-focused outcomes is also key to success in this role.

In addition, you'll need:

• Strong knowledge of proxy architectures and core networking protocols, including TCP/IP and HTTP/HTTPS
• Strong background in network security, including web filtering, SSL inspection, and Data Loss Prevention (DLP)
• Expertise in proxy server architecture, deployment of best practices, and optimising performance.
• Previous working knowledge of policy creation and migration, such asURL filtering andaccess control
• Significant experience of cloud-based proxy environments
• Ability to mentor & coach junior members of the team
• To demonstrate a pro-active and professional way of thinking, in often challenging situations and environments