Information Security Senior Specialist

Job Title: Information Security Senior Specialist

Location: London UK

Duration: 1 Year Contract (Inside IR35)

Job Description:

Information Security Senior Specialist (Database)

Information Security is responsible for preventing ITbased crime hacking intentional or inadvertent modification disclosure or destruction to the organization's information systems and IT assets and intellectual property.

The focus of the role is to ensure highly professional and productive procedures policies and processes/controls are in place and aligned and agreed and implemented with relevant stakeholders.

Overview/Key Responsibilities:

The Information Security Senior Specialist (Database) will work with Database Engineering Database Operations CISO and audit to ensure that security controls are defined implemented and operating effectively.

Roles within Information Security may cover one or more areas of specialty:

Identity & Access Management (which may include for example authentication; access management & control; recertification etc.)

Information Security (IS) Operations (which may for example include cyber threat operations; protection against data leakage etc.)

IS Technology (which may include IS architecture IS engineering cryptographic services etc.). Work includes:

Identifying and evaluating potential areas of Information Security threat by assessing the probability and impact and implementing associated mitigations

Monitoring and contributing to the implementation of the Information Security strategy

Evaluating the adequacy and effectiveness of internal controls relating to Information Security risks

Ensuring appropriate procedures policies and processes are in place and aligned and agreed with relevant stakeholders

Configuration/security baselines

Developing appropriate pragmatic strategies to deliver effective controls and Information Security management objectives and implementation across the bank

Managing client relationships and ensuring management focus on the Information Security agenda

Work includes:

Assessing security/configuration baselines

Reviewing/designing security controls to ensure it meets audit and CSO requirements

Evidencing (documentation) of control compliance

Building security and resiliency into solutions with appropriate testing and reviewing throughout the delivery lifecycle

Ensuring maintainability and reusability of engineering solutions

Support PM Migration Manager and application teams with implementation and Migration activities and tasks to support project delivery

Database Expertise:

Knowledge of relational databases security configuration management security monitoring and tooling.

Migration Process Development:

Work closely with the project/migration leads to develop robust migration processes (provide security input as required).

Ensure seamless integration of migration strategies with minimal disruption to ongoing operations.

Collaboration with Application Teams:

Support migration and project leads and application teams Plan and coordinate migrations considering securitydependencies and minimizing potential disruptions.

You will be: (Skills/Competencies)

Qualifications:

CISA/CISM or equivalent security certification

Demonstrated success in audit remediation initiatives.

Excellent communication and collaboration skills.