Information Security Consultant - Bradford, United Kingdom - Vanquis Bank

Vanquis Bank
Vanquis Bank
Verified Company
Bradford, United Kingdom

3 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

About Us:

Vanquis Banking Group has a rich history dating back to 1880.

The company was founded in Bradford by Joshua Kelley Waddilove as The Provident Clothing and Supply Company to help people access finance and goods who couldn't from traditional lenders.


Today, Vanquis Banking Group is a FTSE All Share company listed on the London Stock Exchange with around 1.6 million customers and plays the same role in people's lives today, as it did when it was founded.


Vanquis Banking Group is a unified group made up of two brands: Vanquis (cards and loans) and Moneybarn (vehicle finance).

While they offer different products and services, they share the common purpose and customer-centric values at the heart of our group.

We understand our customers are real people with varied life experiences, so everything we do from our products to our customer experience is designed with this in mind.


You and Your Team:

As an Information Security Consultant, you will be reporting to the Principle Information Security Consultant.

You'll be part of Information Security Consultancy ensuring organisational assets are secured appropriately based on their importance to the organisation.

The role will enhance the Groups security posture and ensure all people, processes and technology operate in a secure manner by working collaboratively with internal colleagues and external providers and providing security consultancy and design expertise.

The role could be a technical expert and/or an experienced level role.


In your day-to-day role, as an Information Security Consultant your responsibilities will include:


Information Security:

  • To provide expert advice and guidance on how to minimise the impact to the Groups of potential threats to the network or assets through secure designs and assurance.
  • To liaise with potential or current partners and suppliers to the Groups and evaluate the information security levels of the company or products.
  • Work closely with the Security, Architecture and Engineering communities to embed security by design and security assurance reporting.

Policy, Standards, Procedures and Guidelines:

  • To provide SME knowledge to ensure that information security policies are implemented, enforced, monitored and complied with and to ensure the Group embraces a culture of Information Security aligned with Policy and Standards through design.
  • To assure Business change delivery against Information Security Standards and Guidelines within the Groups in line with Policies and Industry best practises.
  • To ensure Information Security procedures are followed to provide repeatable consistent delivery of design and assurance that adhere to in order to implement that Information Security policies.
  • To provide SME knowledge to the Information Security Assurance and consultancy team to deliver.

Risk Management:

  • To work collaboratively with the Infrastructure Solution Architects, Information Security pillars and IT GRC Teams to provide advice and guidance on all Information Security Risks related to Business change delivery.
  • To critique the highlevel and lowlevel designs within projects. Working on all such projects taking ownership of delivering Information Security throughout their lifecycle to ensure the Groups meets compliance and regulatory requirements.
  • To ensure that risk assessments are completed where Business change risk are transferred from a project into BAU risk management.
  • To provide guidance in taking timely action resulting from risks associated with Business change with options/recommendations. This may involve liaison with other departments, partners or suppliers. Monitor and escalate any issues of noncompliance.

Keep Abreast of Data Security Trends:

  • Be aware of current and possible future trends in information security and take into account current Groups procedures, to define and develop procedures for appropriate and secure use of the Groups IT systems.
  • Adherence to standards, including NIST and Information Technology, PCI-DSS and Infrastructure Library (ITIL).

What you will bring to the team:


Essential:

  • Be able to build working relationships with both technical and business stakeholders, based on your knowledge and professionalism.
  • Experience of working in a large company and/or Enterprise environment
  • An understanding of cloud technology (preferably Azure)
  • Excellent communication and presentation skills are paramount, alongside workload delegate management.
  • Strong understanding of cybersecurity standards and frameworks e.g. ISO27001, NIST, CIS, OWASP, SOC
  • Information security frameworks
  • Experience with Security technologies

Desirable skills:

  • Experience of working in a highpressure environment
  • Excellent analytical skills
  • Logically minded and pragmatic
  • Production Mentality
  • Excellent communication
  • Ability to handle pressure and retain a professional manner at all times

Why Vanquis?
Vanquis was established in 2003, offerin
More jobs from Vanquis Bank
See all jobs of Vanquis Bank