IT Security Specialist

Sanderson Recruitment
16 May 2018
23 May 2018
Contract Type
Full Time

For my FS client based in Edinburgh I am currently looking for a Security Specialist on a permanent basis. If you have cloud security experience then I would love to hear from you, however, if you have general infrastructure security experience (e.g. firewalls. Sophos, Checkpoint, Splunk. Trend Micro Deep Security etc) then my client is happy to look at candidates wanting to move into a cloud focussed security role.

Summary of the role's main purpose

To manage the operational security of the Banks Cloud platform, ensuring system integrity and data security is maintained at all times. Ensure that the end-to-end Cloud environment operates within the Bank's policies, standards and risk appetite. Support change projects delivering into the Cloud. Manage the effective operations of the Bank's IT Security controls.

Principal accountabilities

  • Manage the effective daily operation of the Security Operations Centre
  • Perform Security Incident investigations, providing subject matter expertise on the Cloud security components and configuration
  • Tune alerting thresholds and events, create and amend rule base(s)
  • Represent IT Security on Bank projects ensuring that IT Security controls and non-functional requirements are met
  • Develop, maintain and execute effective IT Security controls including:
  • Vulnerability and Patch Management
  • Threat Management
  • Certificate and Key Management
  • Firewall Management
  • Penetration testing
  • Access Controls and Privileged Access Management
  • Review and approve Change designs to ensure appropriate IT Security controls are built in
  • Review pre-live changes to ensure appropriate IT Security controls have been implemented as agreed at design stage
  • Manage the development and maintenance of an effective Role Based Access Control (RBAC) Framework for the Cloud
  • Manage and control User Access provisioning within the RBAC control framework
  • Ensure delivery of appropriate MI/reporting and analysis for all aspects of IT Security
  • Responsible for the preparation of regular and ad-hoc IT Security reports/packs for the IT Department, together with the preparation of IT Security certification and policy attestation packs
  • Provide IT Security Management technical support and assistance to non-technical Colleagues

Skills, knowledge and experience

  • Educated to Degree level and or extensive experience of working in an IT Security environment, preferably within the financial services industry
  • Experience of, Trend Micro Deep Security, Palo Alto Firewall or similar tools would be beneficial
  • Experience of working with Cloud infrastructure hosting beneficial
  • Operational understanding of the ITIL (IT Service Management) framework, COBIT and ISO 27001
  • CISM or CISSP certification beneficial
  • Excellent organisation skills, including the ability to work under pressure and meet deadlines
  • Proven analytical skills, judgement and reasoning ability
  • Good relationship management skills

This job was originally posted as

Similar jobs

Similar jobs