Cyber Security Specialist

1564738207
Negotiable

Managing this Role

Jake Taylor

Associate Consultant - Cyber Specialist 0207 759 7878

A keen sportsman and captain of his local rugby team in Essex, Jake is naturally adept at spotting top performers. With a specific candidate pool from professional services, Jake sources the best cyber security talent for Magic Circle, Silver Circle and top 100 UK law firms.

 

Seniority: Mid - Level

Job Type: Permanent

Geographical coverage: London

Market: Cyber Security operations within the legal sector

We have partnered with a global leader in providing innovative and data-driven solutions to sports, media and regulated betting markets that are on the lookout for passionate, energetic and talented people to join their rapidly expanding team.

Job Description:

As a Security Specialist you will be responsible for providing policies and guidance to ensure the software developed by teams you have responsibility for is Secure by Design. You will champion security and coach development teams in how to develop secure software.

Role and Responsibilities:

  • Leadership of Working Groups to define technical policies and guidelines relating to security
  • Ensure standards are aligned with any business accreditation needs:
    - ISO 27001
    - Cyber Essentials
    - GDPR Related Security Controls
  • Hands-on involvement with the implementation secure technical architectures e.g. authentication and authorisation solutions
  • Creating and developing Reference Security Architecture Blueprints and Standards
  • Coaching of technical DevOps product teams to ensure technical security standards and architectures are well understood and best practice is followed
  • Champion technical product security implementation within the company to ensure Product Owners and other non-technical stakeholders understand the benefits and risks
  • Technical security risk assessment of existing and future products
  • Security auditing of software developed by the company and its partners
    - Black-box penetration testing
    - White-box code reviews, static analysis
  • Investigation of security related events and incidents
  • Technical liaison with third-parties on security related discussions:
    - Customers
    - Regulators and compliance auditors
  • Automation of security testing
    - Tests within the software delivery pipeline
    - Continuous monitoring
  • Report to senior technical managers about security risks

Required Skills:

  • In depth understanding of security best practice and standards:
  • Security by Design
  • ISO 27001 & Cyber Essentials
  • OWASP Top 10
  • Encryption
  • In depth understanding of authentication and authorisation technologies:
    - OpenID Connect
    - SAML
    - OAuth
    - AWS Cognito
    - AWS IAM
    - Active Directory
  • Experienced in:
    - Penetration Testing and use of Burp Suite
    - AWS cloud infrastructure & security
  • Good communication skills
    - Technical and non-Technical staff
    - Senior Management and external Customers

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.