Direct Line Group
,
London, Greater London
Security Solutions Consultant
Overview
Job Description
What we are looking for: Our vision is a world where insurance is personal, inclusive and a force for good. We help people carry on with their lives, giving them peace of mind now and in the future. We do that by providing amazing, evolving products and services that are just what people need. And amazing, evolving careers for people like you! Are you able to articulate technical security requirements in a way that non-technical colleagues will also understand? Can you apply a pragmatic approach whilst still ensuring mandatory requirements can be met? If you fit this profile then we would love to hear from you as we are hiring for a security consultant to join our Security Solutions and Architect team here at Direct Line Group. Who you'll be working with: You will work within Information Security Risk Assurance (ISRA) and play a key role in defining, maintaining and ensuring the integrity and consistency of end to end solutions. As the face of Security to the business, you will be charged with building relationships and ensuring security requirements are integrated into companywide changes and initiatives. With over 10,000 employees and nearly 10 million customers, that's a lot of information to keep safe. We have a huge range of technologies available, as well as the opportunity to work with a range of cross-functional experts in a dynamic and an ever-changing environment. Working in our team might not be exactly like it is in action movies, but we do help protect the business from cyber-attacks. Key responsibilities: * Acting as the primary interface to the business for ISRA, across all project and change programmes. * Identifying security gaps, consulting on and developing designs of new systems, controls and processes * Communicating security solution designs, key recommendations and approaches to colleagues, project bodies and relevant governance forums. * Identifying and implementing opportunities for innovation and continuous improvement in the delivery of appropriate Information Security solutions. * Analysing and researching security technologies to support the development of innovative solutions * Developing and maintaining relationships with relevant functions within ISRA and wider DLG to ensure successful delivery of Information Security into projects and change programmes. Skills and Experience required: * Excellent communication and stakeholder management skills * Strong technical, analytical and problem-solving skills as well as experience of delivering within an agile environment * Security certifications such as CISSP, CISM, GIAC or equivalent (working towards a certification is acceptable) * Experience of delivering services and engaging with suppliers, in a complex outsourced environment * Understanding of infrastructure, application and network security requirements * Understanding of cloud deployments and associated security risks and controls * Experience of providing security advice for serverless and containerised environments ( desirable ) * Knowledge of CI/CD pipelines and associated security considerations ( desirable ) What we'll give you: Come join us and you'll find yourself in the middle of one of the most on-the-go teams in the business, with autonomy and exposure to industry leaders on huge household brand names. We're always encouraging internal development and you'll have access to loads of learning opportunities, events and conferences to build your industry knowledge.