Senior Security Consultant

OverviewJoin us as a Senior Security Consultant. At Barclays, we don’t just adapt to the future – we create it and help us to redefine what’s possible by client-focused technical advisory role to support Secure design and implementation of change across a variety of business areas, technologies, and platforms. Provide direction and guidance to change stakeholders to ensure system security is maintained. Engage and partner with change delivery teams to ensure secure-by-design approaches, identify and track security requirements and ensure Barclays maintains a secure environment. Deliver product and project support and review capability throughout the product development lifecycle, to highlight and articulate information and cyber security risk to stakeholders.

Responsibilities

Support secure design and implementation of change across a variety of business areas, technologies, and platforms.

Provide direction and guidance to change stakeholders to ensure system security is maintained.

Engage and partner with change delivery teams to ensure secure-by-design approaches, identify and track security requirements and maintain a secure environment.

Deliver product and project support and review capability throughout the product development lifecycle, highlighting and articulating information and cyber security risk to stakeholders.

Enable DevSecOps (and shift left) by providing security input early in business plans and technology change designs, influencing key stakeholders to create security strategies.

Provide security reviews for prospective 3rd party technology products and services and support incident response and investigations as needed.

Collaborate with stakeholders and IT teams to develop and maintain security policies, standards and procedures aligned to risk tolerance, regulatory requirements and industry best practice.

Qualifications and required experience

Identifying, mitigating, and remediating security weaknesses in technology solutions.

Infrastructure and platform security.

Stakeholder management and communication skills to influence solutions.

Desirable or valued skills

Formal Cyber Security qualification e.g. Degree/Masters or CISSP certification.

Experience securing Cloud and Big Data platforms.

Experience with securing Generative AI solutions.

Role specificsThis role is based in our Northampton office.

Purpose of the roleTo enable ‘secure by design’, supporting the bank’s change programmes, and design and implement secure systems and architecture across a broad set of security domains. These include data security, security risk management, asset security, security architecture and engineering (incl. cloud security), communications and networks, security operations, software development, security assurance testing, and identity and access management (IAM).

Accountabilities

Control function or security guild responsible for technology change oversight and governance.

Execute security risk assessments and build threat models during the change and development lifecycle to identify vulnerabilities, embedding compensating controls and communicating findings to stakeholders.

Enablement of DevSecOps (shift left) by engaging customers and stakeholders early to seek security input into business plans or technology change designs.

Provide security reviews for prospective 3rd party technology products and services, and support incident response and investigations with security insights.

Transfer residual risks to the business/customer as required by the enterprise risk management framework.

Collaborate with stakeholder and IT teams to support incident response and investigations and share security insights.

Develop, maintain and align security policies, standards and procedures with risk tolerance and regulatory requirements.

Vice President Expectations

Contribute to strategy, drive requirements, make recommendations for change, plan resources, budgets, and policies; manage policies/processes and deliver improvements; escalate breaches of policies.

Lead or guide teams as appropriate, define roles, supervise performance, and balance short and long-term goals with budget/schedule considerations.

Demonstrate leadership behaviours to create an environment for colleagues to thrive, applying Barclays values and mindset.

Provide subject matter expertise, guide technical direction, lead multi-year assignments, and mentor less experienced specialists.

Advise key stakeholders on functional and cross-functional areas of impact and alignment.

Manage and mitigate risks, strengthen controls, and contribute to achieving business goals.

Collaborate with other areas to stay aligned with business activity and strategy.

Create solutions through sophisticated analysis, problem solving, and research-driven approaches.

Build and maintain trusting relationships with internal and external stakeholders to influence outcomes.

All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship – our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset – to Empower, Challenge and Drive – the operating manual for how we ..... full job details .....