IT Security Consultant

North West England
13 Nov 2017
16 Nov 2017
Contract Type
Full Time
IT Security Consultant/ Financial Services

[IT Security Consultant/ Financial Services]

The second payment services directive (PSD2) enables bank customers and businesses to use third-party providers to manage their finances. In the near future, you may be using 3rd parties to pay your bills, making P2P transfers and analyses your spending, while still having your money safely placed in your current bank account. Banks are obligated to provide these third-party providers access to their customers' accounts through open APIs (application program interface). This will enable third-parties to build financial services on top of banks' data and infrastructure.

My Client is a leading financial services provider based in the North-West of England, widely known for their strong business performance, supportive work environment created to attract the best people who share their values. Due to the implementation of the second payment services directive (PSD2) they are looking to expand their consultancy team who understand how to ensure the client adheres to the future legislation.

As such, they are hiring for a new security consultant to assist in the production of relevant security documentation detailing defense in depth controls to mitigate API malicious exposure. You will be addressing authentication and authorisation controls, contributing to design review discussions and assisting with the design and development of IT security services to meet API protection requirements.

This is a great opportunity to join a team on an advanced never before done project that will ultimately dominate financial services within 2018 and have a genuine effect on how PSD2 Is implemented within the financial world.

The ideal candidate will have most, but not necessarily all the following:

  • An Understanding of RESTful services and implementations
  • An understanding of JWT. JWS.JWE implementations.
  • Understanding of crypto key usage with API's
  • Experience of creating standard documents
  • An understanding of JSON and XML message formatting issues, vulnerabilities and mitigating controls
  • An understanding of Application frameworks: e.g. Spring, Struts and the Java platform
  • Attack Vectors against API's / How to identify gaps and prevent attacks.
  • An understanding of cryptographic key usage and implementation

If you would like to apply or for more information please send your C.V to or contact Joseph Moreton on 01618762352

[IT Security Consultant/ Financial Services]

Allegis Group Limited and Aston Carter Limited operate Employment Businesses and Agencies and are companies within the Allegis Group Inc. group of companies, the fourth largest staffing company in the world, (collectively referred to as the "Allegis Group"). TEKsystems and Aerotek are divisions of Allegis Group Limited. Applicant data will be treated in accordance with the Allegis Group's Privacy Notice By submitting personal data to any company or division within the Allegis Group, the applicant is providing explicit consent to the use of such data by the Allegis Group and to the transfer of such data to and from the Allegis Group companies within the UK, Europe and outside the European Economic Area in connection with the fulfilment of the applicant's voluntary requests, and the fulfilment of other job opportunities that match the applicant's profile, and confirms that they may be contacted about such job opportunities.
This job was originally posted as