Security Engineering Practice Lead - Stirling, United Kingdom - eFinancialCareers

eFinancialCareers

Verified Company

Stirling, United Kingdom

1 week ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

At M&G our purpose is
to help people manage and grow their savings and investments, responsibly.

As a business, we are continuing to take steps towards a sustainable future, delivering better long-term solutions for our customers and clientsand identifying new opportunities to make a positive impact for our environment and communities.
To help us achieve our vision we're looking for exceptional people who live our values of care and integrity and who can inspire others; embrace change; deliverresults and keep it simple.

We will consider flexible working arrangements for any of our roles and also offer work place accommodations to ensure you have what you need to effectively deliver in your role.

Working with M&G as the Security Engineering Practice Lead means becoming part of a brand with a global reputation and an exciting vision: to be the leader in helping customers achieve their long-term financial goals. If you're inspired to join us, and ifyou have the necessary qualities, then this could be the opportunity you've been looking for.

We need a technical people leader who is process-centric, a role-model in leading a diverse team of technical security experts and is confident dealing with a range of stakeholders from IT, the business, and strategic partners.

You will be working on excitingnew initiatives, including making sure we have a secure migration to the Cloud, driving secure simplification of the estate and making sure our engineering initiatives front-run business initiatives and enable us to work securely versus being an obstacle.

The Security Operations team is responsible for ensuring appropriate protections are implemented, detecting and responding to cyber security threats. This is achieved through employing a team of experienced cyber professionals, optimisation of security technologiesand robust processes.

The Security Engineering Practice Lead is responsible for managing the Security Engineering function ensuring that technologies are engineered to protect M&G and enable the detection of potential Cyber Threats.

As the Security Engineering Practice Lead within M&G you'll have the opportunity to lead change, with oversight and accountability of a number of third parties delivering technical support services to M&G.

You will be responsible for all formal people managementprocesses within the team and management of deliverables against business priorities.

Job Requirements - Knowledge based and technology skills:

Extensive experience of working in a Cyber Security role, ideally within a regulated environment.
Previous management experience is essential and the ability to manage a talented set of technical experts and solutions architects across SecOps/Security and Network engineering disciplines.
Able to Facilitate the delivery flow of a team, managing the pace and tempo. Able to actively address internal and external risks, issues and dependencies including where ownership exists outside the team.
Experience in technical security leadership, able to bridge the gap between business requirements and security risk to shape solutions
Facilitate and lead requirements gathering for new deliverables
Understand the needs of both technical and business stakeholders and, when necessary, interpret between them. Able to manage stakeholders' expectations and not afraid to facilitate difficult conversations.
Use data intelligently to inform planning and prioritisation. Able to manage complex internal and external dependencies in order to provide greater delivery confidence.
Remove blockers or impediments that affect delivery.
Triage and manage external demand pipelines
Bring people together to form a motivated team who feel empowered to delivery outcomes. Able to help create the right environment for a team to work in, recognising and dealing with issues and able to facilitate the right session depending on the situation.
Strategic thinker understands where we want to go (i.e., what is good) and the engineering steps to get there and sustain it.
Good working knowledge of Cloud security (Azure is preferred) would be an advantage; knowledge of network security capabilities and component functionality.
A good understanding of some of these technologies to secure infrastructure and networks is preferred.
Cyber / Web Security (Firewalls, DoS, Proxies, CDN / WAF, API Gateways etc.).
Threat & Incident Management (SOC, SIEM, Threat Intelligence, etc)
Mobile Security (EMM, MAM, MDM etc).
Cryptography (including Key Management and PKI)
Desktop / Server / Virtualisation Security (vulnerability and patch management, malware protection, etc)

Job Requirements -Transferable / functional skills:

Strong stakeholder management skills.
Highly organised, excellent prioritisation and planning skills
Strong written and verbal communication skills and ability to influence using riskbased reasoning.
Extensive experience in articulating complex requirements as easy to understand security designs using threat profiling, reusable models and architecture principles
Ability to manage a team of talented very technical individuals and to articulate messages to less technical senior leadership and stakeholders
Ability to translate complex technical issues into meaningful details for nonspecialist audiences.

You'll be expected to demonstrate:

You can tackle complexity and make things simple for customers and those around you.
You're commercially savvy, you think competitively, and you'll seize a good opportunity whether big or small.
You're a team player who can help everyone pull together to achieve shared goals. Maintain a positive team mood and focus, if confronted with difficult and challenging circumstances.
You're willing to take responsibility, creating better outcomes by stepping forward, using your judgement and making things happen.
You thrive on a challenge, working with intellectual rigour at pace to achieve the highest standards of execution under all conditions.
You're able to communicate effectively and clearly even when under pressure.
Engage confidently with stakeholders and communicate project information in a clear way, including when communicating difficult messages.
Facilitate meetings and workshops with people from all levels of seniority, without bias.
Can adapt and reflect, is resilient and has the ability to see outside of the process.

Recruiter :
Martyn Jack