Description
Our vision at AutoRek is to set the new standard in financial data automation. Our platform simplifies highly complex data, automates critical business processes, and manages regulatory change. With flexibility, security, and scalability at our core, we enable our customers to make real-time decisions that drive better business outcomes.
With security at our core we are looking for a Security Assurance Analyst (SAA) to join our growing team. As an SAA, you'll work closely with and report into our Head of Governance, Risk & Compliance to ensure our networks, systems, and applications are protected from cyber threats.
The role blends hands-on technical delivery including defining policies & processes, setting up strong security measures, managing security audits, and making sure we're always one step ahead of potential threats.
But it's not just about keeping things running smoothly. You'll also have the chance to learn and grow in your role, staying on top of the latest trends in cyber security. Join us and help shape the future of our security efforts!
Key Responsibilities
* Assist in securing the firm's information systems by actively participating in daily operational activities related to security
* Provide expertise in network, system, and application security, offering insights and recommendations to enhance the overall security posture
* Work closely with various teams within the organization to ensure that security systems and networks are managed effectively, emphasizing strong security and risk management controls
* Report to the Head of Governance, Risk, and Compliance (GRC) and effectively communicate security-related information to stakeholders
* Serve as the subject matter expert on all aspects of cybersecurity, staying updated on emerging threats and best practices to ensure the organization's security readiness
* Define security policies and processes, ensuring alignment with industry standards and regulatory requirements
* Manage security audits, coordinating with the Governance, Risk, and Compliance team to ensure compliance and identify areas for improvement
* Engage in hands-on technical delivery activities, implementing security measures, and addressing vulnerabilities
* Utilise technical knowledge to shape the organization's security posture, proactively addressing existing and emerging cyber threats
* Seek opportunities for professional growth within the cybersecurity field while ensuring the adoption of best practices within the organization
* Based in the Head Office in Glasgow, with the possibility of providing out-of-hours support or triage as needed, although such requirements have historically been minimal
Skills, Knowledge and Expertise
Required:
* Be able to provide recognised security certifications CEH, CISM, CompTIA Security+, CISSP, GSEC
* Experience of securing a cloud-based SaaS platform, and knowledge of the tools & technologies available to assist
* Experience of monitoring tools
* Hands-on experience of vulnerability & incident management and remediation
* Familiarity with Windows / end user computing policies and security
* Knowledge of security frameworks and standards such as ISO 27001, SOC 2, NIST, OWASP, MITRE.
* Technical knowledge of enterprise-class technologies such as firewalls, routers, switches, wireless access points, VPNs, and desktop and server operating systems
Desirable:
* Recent work experience in any of the following: Azure, Microsoft 365, Nessus, Tripwire, Rapid7 SIEM, Terraform/IaC principles
* Experience in financial services & regulated domains
* Security design for enterprise-scale software platforms
* Experience of securing *NIX based systems
* OSCP/CISSP/CISM – Nice to have, but evidence of experience is better!
Why work for us?
Our people make AutoRek and we want to support and show our appreciation to our people by providing the following:
* Generous 34-day holiday package including 8 public holidays
* Your Birthday off courtesy of AutoRek
* Discretionary bonus scheme
* 4% employee and employer pension scheme
* Income protection
* Private health care; extending to members of your household
* Health and well-being activities such as in-office weekly yoga classes, office massages, and discounted gym memberships
* Flexible/ Hybrid working to support your family
* Free access to Bippit - Financial well-being advisors
* High-street discount codes
* Access to learning platforms and training courses
* Multiple fundraising activities and charity events
AutoRek is a financial data management platform enabling companies to streamline and automate complex and high-volume data management and controls processes. Our customers range from innovative FinTech start-ups to many of the UK and the world’s largest and established banks, asset managers and insurance companies. Digital data and financial transaction volumes are growing exponentially, this combined with increasing regulatory obligations is driving the demand for improved efficiencies, better control, and management of risk across the financial services industry. The AutoRek platform meets these demands and more and that is why we continue to be a leading player in the market.