Information Security Specialist
1 week ago
**Information Security Specialist**:
- Hybrid - WFH/City of London 2 days a week
- £700 per day (Inside IR35)
- Job type: Contract
- Sector: Financial Services, Insurance
- Job reference: 41173
Information Security, Agile Security and Risk Management Specialist required for global financial services firm. The role will be to augment the Information Security team to perform risk assessments of projects, provide guidance and acquire outcomes/decisions from the scrum master, enterprise architect, technical architect, solutions architect, data privacy officer, portfolio management office, strategic change development, IT Infrastructure and Operations and penetration testers.
**About the role**
The specialist will work under the responsibility of the Head of IS Services and Risk Management and will report to the Secure Project Lifecycle Team Lead. The responsibilities of the role will include the following:
- Review submission of IS Criticality Assessment (ISCA) questionnaire
- Determine high-level security requirements and project criticality, based on standard project activities and data classification from DP pre-screening
- Work with assigned architect to ensure security requirements are finalized in design (High-Level Design), review with Enterprise Architecture, Solutions Architecture, Cyber Security and Cyber Assurance
- Review of all security requirements and evidence provided by the scrum master to support closure of each requirement:
- Review and feedback on ISCA questionnaire
- Review and feedback on High-Level Design (HLD)
- Present at ISCA Project Technical Review
- Attend and obtain HLD sign-off at Technical Design Authority, Solutions Design Authority (SDA)
- Obtain Business Partner Risk Evaluation Platform (BPREP) scorecard for 3rd Party SaaS solutions from Security Contracts team
- Obtain Identity & Access Management (IAM) assessment signoff from IAM Team.
- Obtain Minimum Technical Security Baseline compliance reporting from QualysGuard
- Obtain Cloud Permit from Enterprise Architecture
- Obtain Code Review and Analysis - in-house solutions only.
- Self-serve vulnerability assessment compliance report of assets in scope
- Liaise with Cyber Assurance on penetration testing of solution and obtain sign-off
- Obtain Digital Hub registration for external facing solutions from Cyber Assurance
- Produce ASRM Security Assessment closure report
- Perform a final review of all open security requirements and their status before any stage gate approval can be provided (effectively the Production Go/No-go decision). Ensure the firm ASRM processes are followed
- Store all evidence in IS project’s shared area
- Update the project register daily to ensure project status is maintained and update the ASRM Security Assessment template as a record of activity. Submit ASRM form for sign off to complete the risk assessment
- Manage project RAG status ensuring activities trending amber and red are highlighted to management and the scrum master
- Liaise with the scrum master to support the development of the risk acceptance (PM is responsible) where needed
- Attend meetings with the scrum master, delivery squads, stakeholders, ISCA technical review, architectural design authorities and pen testing reviews. Challenge design decisions not compliant with security, escalate issues when they become known, and offer options to resolve
-
Information Risk Specialist
2 weeks ago
London, United Kingdom Information Security Solutions Full timeCompany: Financial Services Location: Hybrid - City of London Reports to Information Risk Manager **Salary**: £80,000 Benefits: Generous No. Required: 1 Start Date: ASAP **The Role** As the Information Security Risk Specialist, you shall support the Information Risk Manager which has responsibility for all Governance Risk and Compliance activities in the...
-
Information Security Specialist
2 weeks ago
London, United Kingdom Digitek Resourcing Ltd TA DigiTech Resourcing Full time**INFORMATION SECURITY SPECIALIST** **DIGITAL BANKING** **PERMANENT** **LONDON** ***I am currently recruiting for a information security specialist on behalf of digital banking company based in central London.** **This is a permanent opportunity offering lucrative salaries as well as excellent perks and benefits. In addition, this opportunity offers career...
-
Information Security Specialist
4 weeks ago
London, United Kingdom Morson Edge (Financial Services) Full timeGRC Specialist - Information Security, ISO 27000, NIST, GDPR, CISM, CISSP - London£80,000 - £90,000 + bonus / 2 days WFHA leading London Market Specialty Insurer is seeking a Security GRC Specialist to join their collaborative security team. You will support the Head of Security GRC in strengthening governance, risk, and compliance across the organisation,...
-
Information Security Specialist
4 weeks ago
London, United Kingdom Morson Edge (Financial Services) Full timeGRC Specialist - Information Security, ISO 27000, NIST, GDPR, CISM, CISSP - London £80,000 - £90,000 + bonus / 2 days WFH A leading London Market Specialty Insurer is seeking a Security GRC Specialist to join their collaborative security team. You will support the Head of Security GRC in strengthening governance, risk, and compliance across the...
-
Information Security Specialist
3 weeks ago
london, United Kingdom Morson Edge (Financial Services) Full timeGRC Specialist - Information Security, ISO 27000, NIST, GDPR, CISM, CISSP - London £80,000 - £90,000 + bonus / 2 days WFH A leading London Market Specialty Insurer is seeking a Security GRC Specialist to join their collaborative security team. You will support the Head of Security GRC in strengthening governance, risk, and compliance across the...
-
Information Security Specialist
2 weeks ago
London, United Kingdom NHS Counter Fraud Authority Full timeThe NHS Counter Fraud Authority is the national body responsible for all matters relating to the prevention, detection and investigation of economic crime across the NHS. Further information about our work and annual plan for delivering this is available on our website. Our team are embarking on a piece of work to monitor data to identify and respond to...
-
Security Specialist
1 week ago
London, United Kingdom People First Full time**YourNewJobTitle**:Security Specialist (Information Security) **TheSkillsYou'll Need**:Information securities, IT security knowledge, Administration **YourNewSalary**: up to £60K + travel cards up to Zone 6 **Location**:London **Who You'll Be Working for**:International IT Company **What You'll be Doing Each Day**: - Plan, manage, facilitate,...
-
Information Security Specialist
4 days ago
London Area, United Kingdom Morson Edge (Financial Services) Full time £80,000 - £90,000 per yearGRC Specialist - Information Security, ISO 27000, NIST, GDPR, CISM, CISSP - London£80,000 - £90,000 + bonus / 2 days WFHA leading London Market Specialty Insurer is seeking a Security GRC Specialist to join their collaborative security team. You will support the Head of Security GRC in strengthening governance, risk, and compliance across the organisation,...
-
Security Manager
7 days ago
London, Greater London, United Kingdom Information Security Solutions Full time £120,000 - £160,000 per yearWe are searching for candidates that match the role below:Title………………………Security ManagerCompany………………Financial ServicesLocation………………..LondonWorking pattern……Hybrid – 2 days per week in the officeSalary……………………£120,000 - £160,000The RoleWe are seeking a Security Manager to lead security...
-
Information Security Operations Specialist
2 weeks ago
London, United Kingdom Tokio Marine Kiln Insurance Services Limited Full timeWe have the opportunity for an Information Security Operations Specialist to join our Information Security team here at Tokio Marine Kiln. You will report to the Information Security Architect SecOps Manager and will be responsible for maintaining and improving the security operations tools and procedures at TMK, with a focus on prevention, detection,...
