Information Security Consultant


Premium Job From Schroders

Recruiter

Schroders

Listed on

22nd February 2020

Location

London

Type

Permanent

This job has now expired please search on the home page to find live IT Jobs.

Who we're looking for
We're looking for a specialist to provide technical and non-technical information security consultancy services to the Schroders business units and IT.
 
This role reports to the Head of Information Security Consultancy, and will take day to day direction from the local Lead Consultant.  The role necessitates an ability to champion the security team to influence senior business representatives and to engage with internal stakeholders in all areas of technical and non-technical information security. 
 
About Schroders
We're a global investment manager. We help institutions, intermediaries and individuals around the world invest money to meet their goals, fulfil their ambitions, and prepare for the future.
 
We have around 4,000 people on six continents. And we've been around for over 200 years, but keep adapting as society and technology changes. What doesn't change is our commitment to helping our clients, and society, prosper.
 
The base
We moved into our new HQ in the City of London in 2018. We're close to our clients, in the heart of the UK's financial centre. And we have everything we need to work flexibly.
 
The team
IT at Schroders is not just about technology; it's about problem solving using cutting edge technology to support the business and deliver high end solutions. We encourage innovation and value excellence. We are a global function that's managed locally and this allows us to develop and deploy systems and processes across our international offices. To learn how we've grown, explore our interactive timeline to see how we've been shaping financial futures since our very beginnings. 
 
The Schroders Global Information Security function ensures our business is able to operate safely in a dynamic threat and technological environment by effectively managing the risks to its information assets. To achieve this aim, the function contains teams responsible for Cyber Security, Insider Security, Information Risk Management, Technology Risk and the Information Security Change Programme. 
 
We also recognise that successfully balancing personal and professional commitments brings out the best in our teams and therefore all roles in Global Technology are reviewed for suitability for flexible working arrangements. We passionately believe that individual performance is enhanced by embracing the whole individual and structuring a working environment that supports them.
 
What you'll do


INFORMATION SECURITY:
      •     Provide advice and guidance on how to minimise the impact to the business of potential threats to the network or assets
      •     Liaise with potential or current partners and suppliers to the business and evaluate the information security levels of the company or products.
      •     As required assist and provide guidance to business stakeholders, project managers and solution architects through the lifecycle of a project related to project and business change.
      •     As required investigate the vulnerability of the business to potential malicious attacks and recommend defensive actions.
 
POLICY, STANDARDS, PROCEDURES AND GUIDELINES:
      •     Ensure that information security policies are implemented, enforced, monitored and complied with and to ensure the business embraces a culture of Information Security.
      •     Develop and ensure data security procedures are approved that provide the more detailed steps that service areas need to adhere to in order to implement that data security policies.
      •     Drive the ongoing improvements to the security consultancy process and supporting tooling
 
RISK MANAGEMENT:
      •     Work with Enterprise and Infrastructure Solution Architects to advice on all Information Security Risks with regards to infrastructure, changes to processes or project implementations. To critique the high and low level designs within projects. Working on all such projects throughout their lifecycle to ensure the business meets compliance and regulatory requirements.
      •     Assist in taking timely action resulting from any risk assessment recommendations. This may involve liaison with other departments, partners or suppliers. It is essential to keep the Head of Information Security APAC and the CISO informed if there are any issues of non-compliance.
 
KEEP ABREAST OF DATA SECURITY TRENDS:
      •     Be aware of current and possible future trends in information security and take into account current business procedures, to define and develop procedures and policies for appropriate and secure use of the businesses IT systems.
      •     Adhere to standards, including ISO27001 and Information Technology, PCI-DSS and Infrastructure Library (ITIL)
 
The knowledge, experience and qualifications you need
      •     Hands on experience with Security technologies and the ability to speak to and consult back to senior business figures.
      •     Strong and in depth knowledge of SABSA, NIST, COBIT , ISO27001 (training or certification in this area would be particularly advantageous).
      •     Experience designing and reviewing IT and Security Architecture.
      •     Knowledge of IT Networking and Infrastructure.
      •     Knowledge of application security and secure coding practices.
 
What you'll be like
      •     Excellent written skills and the ability to communicate with all levels of the business, technical or not
      •     Positive outlook regardless of the situation with the ability to see past the present where there may be intense pressure
      •     The ability to self-reflect and evaluate how you can better yourself
      •     Willing to take any challenge up regardless of the challenge in front of them
      •     Open to both offering and receiving help when it is needed 
 
We're looking for the best, whoever they are
Schroders is an equal opportunities employer. You're welcome here whatever your sex, marital status, ethnic origin, sexual orientation, religious belief or age.


You are currently using an outdated browser.

Please consider using a modern browser such as one listed below: