Overview

To support the Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bell's systems and services. This role is responsible for designing and implementing improvements to the Cybersecurity risk management tools, systems, and processes. It supports continual improvement through innovation, automation and integration of its tools and processes.

Responsibilities

• Lead the delivery and maintenance of technical enterprise security solutions for areas including End Point Protection, Cloud Security, Network Security, DevOps, Security Monitoring & Remediation.
• Design and implementation of enterprise security technology controls and platforms, following secure infrastructure engineering best practices.
• Lead the identification, evaluation, and requirements collection for new enterprise security tools.
• Drive adoption of new tools and techniques, ensuring adequate operational handover and clear articulation of value and impact.
• Plan and coordinate patch management activities for internal systems and hardware.
• Assess and recommend server hardening activities to be completed by Infrastructure and Service Delivery teams.
• Support audit and due diligence activities within Technology Services.
• Support and advise on projects and change initiatives to ensure no negative impact on security posture.
• Act as an integration point between CISO and AJ Bell Infrastructure teams to ensure integration of technical IS solutions into the wider technology estate.

Technical Skills

• Demonstrable experience of implementing enterprise security platforms.
• Strong understanding of Information Security risk management tools and techniques.
• Awareness of Information Security control standards and frameworks.
• Awareness and understanding of the Information Security threat landscape.
• Deep understanding of Information Security solutions (e.g., email/web gateways, PAM, IGA, SIEM, Endpoint protection).
• Knowledge/experience working with firewalls is advantageous.
• Experience of Cloud security solutions and standards is advantageous.

Competence, Knowledge And Skills

Competence

• Experience within recognised Information Security frameworks and best practices such as ISO27001, NIST, etc.
• 5 years' experience in an Information Security role in financial services or e-commerce environment is preferred.

Knowledge & Skills

• Significant experience in IT security.
• Strong knowledge of core IT and networking concepts.
• Well versed in IT security capabilities, framework and concepts.
• Extensive experience implementing industry-standard IT security platforms.
• Strong ownership of tasks, attention to detail and ability to follow through.
• Ability to challenge approach, strategy and implementation to ensure Information Security is improved.
• Ability to work under own initiative and communicate effectively with colleagues and customers.
• Structured, self-starting, flexible and able to work in fast-paced environments.
• Excellent written and verbal communication skills.
• Ability to plan, organise and complete tasks with minimal prompting.
• Excellent attention to detail.
• Attained or working towards CISSP certification.

About us

AJ Bell is one of the fastest-growing investment platform businesses in the UK offering an award-winning range of solutions for professionals and DIY investors. We have over 620,000 customers managing assets totalling more than £96.1 billion. We are listed on the London Stock Exchange Main Market and are a FTSE 250 company. Headquartered in Manchester with offices in central London and Bristol, we employ over 1,500 people and have been recognised as a top place to work.

What we offer

• Starting holiday entitlement of 26 days, rising to 31 with service, plus holiday buy/sell
• Pension schemes with matched contributions up to 7%
• Discretionary bonus scheme
• Annual free share awards scheme
• Buy As You Earn (BAYE) Scheme
• Health Cash Plan and discounted private healthcare
• Free onsite gym and Employee Assistance Programme
• Bike loan, sick pay pledge, enhanced parental leave
• Loans for travel season tickets, death in service scheme
• Paid time off for volunteer work and charitable giving opportunities
• Social events, personal development programmes, ongoing technical training
• Professional qualification support and talent development programmes
• Peer recognition scheme and rewards
• Casual dress code

Hybrid working

AJ Bell offers a hybrid working model. You will spend a minimum of 50% of your working time per month in the Manchester office. For new team members, an initial period will be full-time in the office to help you integrate and build relationships.

Equal opportunity

AJ Bell is committed to providing equal employment opportunities. We do not discriminate on the basis of race, sex, gender identity, sexual orientation, age, pregnancy, religion, disability, marital status or any other protected characteristic. Hiring decisions are based on qualifications, merit and business need.