Insider Threat Consultant Northampton, England
Job description
Insider Threat Consultant
Northampton
As a Barclays Insider Threat Consultant, you’ll work with risk leads across the organisation to ensure on an ongoing basis, as mandated by the Insider Threat standard, that Insider Threats are identified, risk assessed, & appropriate controls are in place including adequate monitoring & detection of potential wrongdoing & reporting of violations into Insider Core. For this role, you’ll also oversee Insider Threat across Barclays, including the provision of Insider Threat consultancy to the business, and adherence to the Insider Threat standard.
Barclays is one of the world's largest and most respected financial institutions, with 329 years of success, quality and innovation behind us. We offer careers that provide endless opportunity – helping millions of individuals and businesses thrive, and creating financial and digital solutions that the world now takes for granted.
We are currently in the early stages of implementing a hybrid working environment, which means that many colleagues spend part of their working hours at home and part in the office, depending on the nature of the role they are in. We’re flexible on how this works and it may continue to change and evolve. Depending on your team, typically this means that colleagues spend a minimum of between 20% to 60% of their time in the office, which could be over a week, a month or a quarter. However, some colleagues may choose to spend more time in the office over a typical period than their role type requires. We also have a flexible working process where, subject to business needs, all colleagues globally are able to request work patterns to reflect their personal circumstances. Please discuss the detail of the working pattern options for the role with the hiring manager.
What will you be doing?
• Interacting with senior internal business line risk leads and subject matter experts on a daily basis and with other senior stakeholders within the wider Chief Security Office
- Providing Insider Threat consultancy to business stakeholders, leading workshops, round table discussions and scenario emulation/table top exercises
- Imparting detailed threat modelling and risk assessment of Insider Threats in collaboration with business risk leads
- Reporting to senior management and executives on the wider Insider Threat landscape
- Validating threat scenarios and countermeasures within application components, controls and hosting methodologies and business application flows
- Identifying potential gaps in controls and opportunities in business processes that could be exploited by accidental, negligent and malicious Insiders
- Ensuring full compliance with regulatory requirements, Enterprise Wide Risk Management Framework and internal Barclays Policies and Policy Standards
- Prioritising workload and escalating to senior management, working as part of a virtual team including remotely from direct line management
• Experience with pen-testing, control evasion or attack path mapping fundamentals in either technical or social engineering domains
- Familiarity with incident response processes and supporting frameworks such as NIST, CKC, Mitre ATT&CK or similar
- Expertise in SIEM engineering, log parsing, event ingest, alert creation and enrichment
- Awareness of security incident investigations, cyber incident response or insider threat incident response
• CERT Insider Threat Program Manager qualifications
- Certified Information Security Manager (CISM)
- Certified Risk Manager (CRM)
- Experience leading SOC/CIRT transformations or transformation work streams and Threat consultancy / threat identification
Where will you be working?
Northampton was the birthplace of Barclaycard in 1966 and we've been based in Pavilion Drive since the building opened in 1997.
We purchased the building from the landlord in early 2018 as a sign of our commitment to investment in Northampton. Plans to further develop this Campus-style location are under way to allow for a real collaborative work environment. Based just off the A45 it is easily accessible by both car and bus routes.
#LI-Hybrid
