Responsibilities
:
1. Lead the SecEng Team
2. Be pragmatic andmercially driven positioning the security function as an enabler for the business.
3. Work to design, develop and execute on the BH InfoSec strategy.
4. Design and execute an adversarial security program to proactively identify vulnerabilities and risks.
5. Own the relationship with key stakeholders across the firm to inform the Security requirements, roadmap and priorities.
6. Assist the Head of SecOps on security incidents, investigations and remediation.
7. Lead Red Teaming and/or penetration testing.
8. Advocate of the principle of "shift left" and approach to DevSecOps
PERSON SPECIFICATION
WORK EXPERIENCE/BACKGROUND:
Essential
9. 5+ years of professional hands-on experience with a programming or scripting language, Java, Golang, Python, Bash,, etc.
10. Professional experience within financial services
11. Experience working in a dynamic, fast paced environment
12. Strong experience in securing Cloud environments, AWS, Azure, GCP
13. Strong experience in securing microservice architecture Kubernetes, Docker
14. Deep understanding of Operating System security, Windows & Linux
15. Strong knowledge around cryptographically securing data, assets and infrastructure
Desirable
16. Familiarity with secure execution environments, air gapped system architecture, infra-as-code, tamper proof hardware.
17. Experience with application security toolsets such as SAST, DAST, SCA and secret scanning
18. Experience in securing CI/CD pipelines and Infrastructure-as-Code
19. Experience in managing internal or external vulnerability assessments such as pentests, red team etc.
Job ID JR101177