Job Description
We are looking for an Information Security Consultant to join us in Hove.
You’ll play a key role in realising our security improvement programme across several business areas and will work closely with a wide range of colleagues from both a technical and non-technical background.
This is the ideal role for someone who would relish the chance to shape how our Group functions operate from a security perspective, who also possesses a wide range of knowledge across a variety of security areas.
What you’ll be doing:
* Security Design – Ensuring projects consider security in the design by setting security needs and requirements to ensure alignment to L&G Security Policies and Standards, participating in Technology or Supplier selection as a security SME and applying threat and initial risk assessment approaches to select appropriate controls. Working with the Group wide Security Improvement Programme to ensure Group Finance services align with current Security requirements
* Security Assessment – Reviewing the design of in-flight or existing services to conduct risk assessments, identifying and articulating security gaps against L&G Security Policies and Standards. For gaps identifying the related risks and potential options for management – articulate options to system or business owners
* Security Advice and Guidance – Acting as a source of expert Information Security advice, both to projects (i.e. consulting with architects or developers) and in an ad-hoc manner (responding to user queries) working closely with key stakeholders and business leaders to ensure security issues are understood and reviewing existing systems and services to prioritise security improvement activities
* Security Advocacy – Representing the Group Finance Security team to senior business stakeholders. Identifying areas where the Security team, and wider IT team, can add additional benefit and support business ambitions
* Security Representation – Representing the Group Finance IT team in interactions with the wider L&G Group and Security Improvement project, such as sitting on Steering Groups or Customer Engagement Workshops and ensuring Group Finance interests are input and requests for input are passed to the correct teams
* Security Maturity – Actively working to improve the Group Finance IT Security Maturity and Capability. Suggesting enhancements to processes, update or establish procedures where required
Qualifications
Who we’re looking for:
* You’ll have broad knowledge of a variety of Information Security areas such as Access Control security, transportation security, secure architecture principles, cryptography and operational controls (such as back-ups, resilient design, anti-virus)
* Knowledge of threat modelling, control frameworks and risk assessment techniques (such as ISO2700x, COBIT, COSO, ITIL and NIST Cyber Security Framework) are also key
* It would be great if you have worked in a regulated environment
* Experience of security design in projects (setting requirements, reviewing architecture)
* Risk assessment and control selection experience
* Appropriate security qualifications and memberships (e.g. CISSP, etc.) would be a huge plus!
Whatever your role, we reward performance and behaviour with a package that looks after all the things that are important to you. Here are some of the benefits we offer:
* The opportunity to participate in our annual, performance -related bonus plan and valuable share schemes
* Generous pension contribution
* Life assurance
* Healthcare Plan (permanent employees only)
* At least 25 days holiday, plus public holidays, 26 days after 2 years’ service. There’s also the option to buy and sell holiday
* Competitive family leave
* Participate in our electric car scheme, which offers employees the option to hire a brand-new electric car through tax efficient salary sacrifice (permanent employees only)
* There are the many discounts we offer – both for our own products and at a range of high street stores and online
* In 2023, some of our workspaces were redesigned. Our offices are great spaces to connect and collaborate and have your wellbeing at the heart
Additional Information
At L&G, we believe it's possible to generate positive returns today while helping to build a better future for all.
If you join us, you’ll be part of a welcoming, inclusive culture, with opportunities to collaborate with people of diverse backgrounds, views, and experiences. Guided by leaders with integrity who care about your future and wellbeing. Empowered through initiatives which support people to develop their careers and excel.
We care passionately about outcomes rather than attendance and are therefore open to discussing all kinds of flexible working options including part-time, term-time and job shares. Although some roles have limited flexibility due to customer demand, we accommodate requests when we can.
It doesn’t matter if you don’t meet every single criterion in this advert. Instead, think about what you excel at and what else you can bring in terms of strengths, potential and connection to our purpose.