Bolton - Flexible hybrid working - 3 days a week in office
An exciting and diverse career opportunity to progress with a global market leader.
Joining a bespoke team, in effect an internal security consultancy, you will have an opportunity to make strategic input and tactical decisions across a wide a varied range of transformation and change programs. You background will allow you to bring 'subject matter expert' input to the security area of all strategic projects.
Your responsibilities will include:
1. Core ownership for planning and execution of security elements of strategic projects.
2. Delivery responsibility for timely and effective security solutions
3. Provide advisory and consultancy services to ensure achievement of business goals
4. Provide oversight to secure solutions that are scalable and portable across the business
5. Support security risk assessment and problem mitigation
6. Deliver technical consultancy on 3rd party and vendor involvement
7. Build up expertise in a range of subject matter areas
8. Champion future proofing and threat mitigation and continuous innovations in practices, tools and technology
To be a successful you will possess:
9. Relevant, current and transferable enterprise security advisory experience
10. A track record as a 'go to' technical subject matter expert in Information Security matter. Typically achieved by performing functions such as Security Architect, Security Project Lead, Security Technical expert, DevSecOps
11. A technical breadth to include enterprise, distributed systems and cloud technologies.
12. Strong practical understanding of Information Security risk management processes and best practice
13. Advanced communication and interpersonal skills, including the ability to negotiate and resolve conflict, and to engage effectively with a mixed technical, non-technical and business community
14. Strong demonstrable stakeholder management skills, (internal and external)
15. Desirable to hold security certification such as CISSP, CISM
16. Desirable to hold PenTest certification such as CEH, GIAC
17. Desirable to understand risk driven architecture such as Sherwood / SABSA / SANS
18. Highly desirable to have exposure to DevSecOps functions.
For clarification:
19. This role is NOT GRC, neither is it a SOC role, rather it is more suited to a Security Engineer who has progress to a broader role engaging on multiple concurrent projects, influencing initial idealisation, tool or partner choice, build and design, alongside project management and stakeholder engagement.
20. This role requires you to be onsite 3 days a week therefore a reasonable commutable domicile is expected. Office locations including Bristol, also Bolton,Tunbridge Wells or Redhill can be considered
21. This role does not currently provide sponsorship support.