Job description
Agile Working Options
Salaries differ based on hub locations.
At Lloyds Banking Group we’re building the bank of the future, and we want your help to ensure we do that with security at the heart of all of our change. With over 26 million customers, we’re the UK’s largest Retail and Digital Bank, and with 65,000 colleagues, the scale of services, customers, and colleagues you can help protect is EPIC.
We're the UK’s largest Digital, Retail and Commercial Bank with a focus on Helping Britain Prosper. We’re innovating products that help transform customer journeys – making millions of people’s lives simpler and better, all over the country, every single day.
There’s never been a better time to be part of change – help us reinvent the boundaries of banking, and we’ll invest in your continued development, so you can craft your future career. We're committed to employing a diverse and inclusive workforce, reflective of the customers and communities we serve – where all our colleagues can be themselves and succeed on merit.
A little about our Chief Security Office team here at Lloyds:
Cyber Security sits at the heart of our business providing the Group with a secure operating environment, safe from malicious attacks or the abuse of privileged access and promoting the secure use of IT across the Group. It is a dynamic and constantly evolving world where your experience and efforts can deliver tangible results to the safety of a huge company and over 30m customers.
We’re on the mission to build the bank of the future, and we need your help to do it!
CSO is a growing, dynamic area offering opportunities for colleagues to develop their expertise as we redefine our methodologies, building the standard of our security capability and using the newest technology to provide an excellent customer experience.
The day to day:
We're looking for a Security Consultant with a broad knowledge of Cyber Security domains and their associated design related controls to cover a wide range of computing platforms.
As a Security Consultant you will work multi-functionally liaising with different business stakeholders, technology and platform teams to ensure security by design is embedded across all change delivery activities.
No day is the same, you will play an instrumental part in a wide range of key projects, where you will be assessing the impact of change initiatives, authoring secure designs and providing crucial guidance on implementation of security controls, enabling the business to progress quicker and safer.
Sounds an exciting prospect, right? Are you someone who wants to be in at the heart of this change, working in an agile way to deliver new, innovative ways of working?
Essential skills for this role:
Author and articulate Security Designs and associated requirements
Demonstrate the ability to produce and articulate Security Designs with all collaborators and stakeholders within the project and business- Ability to explain technical solutions at a component level in writing and diagrammatically
- Demonstrate your experience in detailing example components e.g., inter-connection details, authentication requirements, protection of data at rest or any such security requirements that may form part of the overall solution
- Effectively communicate technical concepts to both technical and non-technical collaborators and team members
- Demonstrate the ability to constructively challenge the project team while championing the banks values and low risk appetite in the delivery of secure solutions
- Manage multiple projects or workstreams ensuring to regularly update stakeholders on progress and challenges in line with project timelines
Threat Modelling & Assessment
- Ability to identify and mitigate against threats and vulnerabilities associated with proposed high-level solutions and evaluating the soundness of solutions presented throughout the engagement on the project or change initiative using industry standard practices (e.g., STRIDE)
- Demonstrate the ability to interpret threats into Risks, using your knowledge and experience to assist the business in assessing likelihood and impact
Desirable skills for this role:
Industry Policy & Standards
- Awareness of industry related security standards such as ISO 27K series, PCI DSS, COBIT, NIST and financial regulations including PRA and FCA
Security Testing and assessment
- Define and shape how the project can best gain an independent assurance of the security design and implementation of the solution
- Demonstrate experience in reviewing the outcome of such testing and working with product owners to understand the impact of any risks discovered
Multi-Vendor Environment Awareness
- Experience of working in a hybrid, multi-platform environments such as, private and public Cloud, SAAS, PAAS and IAAS in addition to multi operating systems eg. Linux and Windows
- Understand the suitability and applicability of Security controls in these environments
- Awareness of secure delivery pipeline principles and methodologies
- Certifications in CISSP/CISM/CCSP or equivalent
- Experience in a Security Consultancy design-based role or a similar field of work
In return, you will get:
You'll get the stretch and opportunity to learn new technologies within a well-funded organisation and take your next step up the career ladder into bigger and more complex roles. You'll also will also enjoy a diverse, energising, and informal environment that focuses on teamwork and providing equal opportunity with working patterns beyond the standard 9-5.
You’d get a benefits package that includes;
- A performance related bonus
- Generous pension contribution
- 30 Days leave plus bank holidays
- A flexible cash pot (4% of base salary) to spend on benefits
- Private health cover & much more
We're dedicated to giving you opportunities and support to develop you both expertly and personally to optimise your potential.
As a new colleague, you’ll join us on our journey to build a 21st century bank that reflects modern Britain, and craft an inclusive culture where all colleagues feel encouraged and valued.
If this opportunity sounds like a great match we'd love to hear from you where together we make it possible!
At Lloyds Banking Group, we're driven by a clear purpose; to help Britain prosper. Across the Group, our colleagues are focused on making a difference to customers, businesses and communities. With us you'll have a key role to play in shaping the financial services of the future, whilst the scale and reach of our Group means you'll have many opportunities to learn, grow and develop.