Sign In
Sign In
Join Now

Job Detail

Information Security Specialist(Remote)

  • Medium Level
  • Type Fixed
  • Duration: More than 06 months
Send Proposal

Project Detail

This role is a key member of the TU UK Security Team and reports into the UK Information Security Manager. The ideal candidate will have a strong technical security background, be able to work collaboratively and pragmatically with stakeholders from across the business and will possess a strong delivery mindset. They need to be willing and able to undertake multiple projects and prioritise them appropriately using their own initiative. The role provides fantastic opportunities to work across multiple security disciplines, with huge potential for individual growth and development.

What You'll Bring

Role Responsibilities:

  • Provide oversight, guidance and subject matter expertise to technology, project and business teams.
  • Proactively engage product and business owners to ensure they understand and deliver security requirements, comply with audit expectations and support risk remediation activities.
  • Ensure controls are identified and implemented throughout each stage of product development and enterprise change.
  • Identification, mitigation and management of security risks.
  • Provide training and mentoring to team members in addition to technical workshops with key stakeholders within the technology and security teams.
  • Run awareness activities to ensure continuous improvements to the security culture for the organisation.
  • Review application security scans and provide remediation advice to product owners and developers.
  • Evaluate the effectiveness and coverage of security products and tooling to continuously monitor and protect company assets.
  • Support ISO27001, PCI DSS and other internal and external audit programmes.
  • Support the continuous improvement of security policies and standards.
  • Support clients with any security related queries raised.

Key Tasks

  • Working with project and product teams, providing support and guidance to ensure compliance with security policy and standards.
  • Perform security assessments with recommendations to mitigate and reduce risk.
  • Working with technology and security teams, driving initiatives such as vulnerability assessment and penetration testing workstreams.
  • Implement and improve technical processes to create efficient and secure methodologies.
  • Support the management and investigation of security events including post incident reviews in conjunction with other security teams.

Essential Skills & Experience:

Development experience - Java or Dot net

Security/ SAS tool (Static application )

Manual code reviews/automatic reviews

CISSP qualified, or similar qualification or proven relevant experience any kind OSCP, GWAPT will complement this

Proven track record in an IT Security role

Strong understanding of technical security risk, threat, and vulnerability management principles

Ability to drive own workload identifying risks and requirements working flexibly where required

Willingness to learn and undertake formal and informal training should it be required

Interested?? Click me to apply

Skills Required

Java ASP.NET