Job Specifications
Job Description
Purpose of the role
To support the Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bell's systems and services. This role is responsible for playing a lead role in designing and implementing improvement to the Cybersecurity risk management tools, systems, and processes. Key to this is assisting and supporting the Information Security team to drive continual improvement through innovation, automation and integration of its tools and processes.
The key responsibilities of the role are:
Lead the delivery and maintenance of technical enterprise security solutions for (but not limited to) the following areas: End Point Protection, Cloud Security, Network Security, DevOps, Security Monitoring & Remediation.
Design and implementation of enterprise security technology controls and platforms, following secure infrastructure engineering best practices.
Lead the Identification, evaluation, and requirements collection for new enterprise security tools
Driving the adoption of new tools and techniques, ensuring adequate operational handover is in place and able to articulate inherent value and impact
Lead the planning and co-ordination of patch management activities for internal systems and hardware
Assessing and recommending server hardening activities to be completed by the Infrastructure and Service Delivery teams
Supporting audit and due diligence activities within Technology Services
Supporting and advising on projects and change initiatives to ensure that there is no negative impact on our security posture
Acts as an integration point between CISO and AJ Bell Infrastructure teams to ensure integration of technical IS solutions into the wider technology estate
Technical Skills:
Demonstrable experience of implementing enterprise security platforms
Strong understanding and knowledge of Information Security risk management tools and techniques
Awareness of Information Security control standards and frameworks
Awareness and understanding of the Information Security threat landscape
Deep understanding of Information Security solutions e.g. email / web gateways, Privileged Account Management (PAM), Identity Governance and Administration (IGA), Security Information and Event Management (SIEM), Endpoint protection etc.
Knowledge/experience working with firewalls is highly advantageous
Experience of Cloud security solutions and standards is highly advantageous
Competence, Knowledge And Skills
Competence
Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc.
5 years' experience in an Information Security role gained in a financial services or e-commerce environment is preferred
Knowledge & Skills
Significant experience in the area of Information Technology (IT) security
Strong knowledge of core IT and networking concepts
Well versed in IT security capabilities, framework and concepts
Extensive experience implementing industry-standard IT security platforms
Strong ownership of tasks, attention to detail and following through to conclusion
Ability to challenge approach, strategy and implementation to ensure Information Security is consistently considered and improved
Ability to work under own initiative to plan and communicate effectively with colleagues and customers
Structured, self-starting, flexible and enjoy working in fast-paced environments
Effective communication skills, both written and verbal
Ability to plan, organise and follow through on assigned tasks and complete with little or no prompting from management
Excellent attention to detail
Attained or working towards CISSP certification
About us:
AJ Bell is one of the fastest-growing investment platform businesses in the UK offering an award-winning range of solutions that caters for everyone, from professional financial advisers to DIY investors with little to no experience. We have over 620,000 customers using our award-winning platform propositions to manage assets totalling more than PS96.1 billion. Our customers trust us with their investments, and by continuously striving to make investing easier, we aim to help even more people take control of their financial futures.
Having listed on the Main Market of the London Stock Exchange in December 2018, AJ Bell is now a FTSE 250 company.
Headquartered in Manchester with offices in central London and Bristol, we now have over 1,500 employees and have been named one of the UK's 'Best 100 Companies to Work For' for six consecutive years and in 2024 named a Great Place to Work(r).
At AJ Bell you can expect a friendly working environment with a strong sense of teamwork, we have a great sense of pride in what we do, and this is reflected in our guiding principles.
What we offer:
Starting holiday entitlement of 26, increasing up to 31 days with length of service and a holiday buy and sell scheme
A choice of pension schemes with matched co
About the Company
AJ Bell was formed in 1995 and is now one of the leading online investment platforms in the UK. We provide customers and advisers with wide investment choice, low-cost delivery, market leading online functionality and first class service to help them manage investment portfolios within SIPPs, ISAs and Dealing accounts. We are a fast growing and profitable company, with over 593,000 customers and PS90.4 billion of assets under administration. We are part of the FTSE 250 on the Main Market of the London Stock Exchange.
Know more