Information Security Officer
On site
Bristol, United Kingdom
Full Time
31-03-2025
Job Specifications
Company Description
SBS is a global financial technology company that’s helping banks and the financial services industry to reimagine how to operate in an increasingly digital world. SBS is a trusted partner of more than 1,500 financial institutions and large-scale lenders in 80 countries worldwide, including Santander, Societé Generale, KCB Bank, Kensington Mortgages, Mercedes-Benz, and Toyota. Its cloud platform offers clients a composable architecture to digitize operations, ranging from banking, lending, compliance, to payments, and consumer and asset finance. With 5,000 employees in 50 offices, SBS is recognized as a Top 10 European Fintech company by IDC and as a leader in Omdia’s Universe: Digital Banking Platforms. SBS is a subsidiary of European digital consulting leader Sopra Steria (EPA: SOP), a 56,000-person company that generates annual revenue of €5.8 billion in 2023.
Job Description
Location: Bristol or Sheffield
Salary: £55,000-£70,000 DOE
Contract type: Full-time & permanent
Hybrid, office 2 days per week
We are on the lookout for an experienced Cloud Information Security Officer to help drive forward our commitment to providing a world-class information security management system for our products and services that protects both Sopra Banking Software and our customers' interests. This role will report to the Security, Risk and Compliance Lead.
Proactively monitor for, identify, respond to, and resolve security incidents
Align information security strategy with business goals and objectives.
Ensure compliance with relevant local and international laws, as well as internal policies.
Foster a culture of information security awareness and continuous improvement.
Drive the adoption of best practices in data protection and cybersecurity.
Maintain a strong relationship with internal teams and our customers by demonstrating an understanding of, and by executing best practices within information security.
Update and maintain Information Security Policies, procedures and supporting operational collateral.
Manage internal and external audit events (e.g., SOC1, ISO 27001) and information security requests from customers to demonstrate compliance with industry best practices and customer contractual obligations.
Remain up to date with the latest threats and vulnerabilities to ensure operational tools and processes are in place and up to date.
Participate in the identification, assessment, registration, and treatment of information security risks.
Qualifications
Minimum of 3 years of experience working in an information security role, or an information security-related qualification.
Experience working in and securing cloud environments (AWS preferred)
Excellent working knowledge of common security tools and platforms.
Familiarity with GDPR, ISO 27001 and other relevant information security laws and standards.
Excellent written and verbal communication skills, with the ability to convey complex information.
A very strong understanding of information security concepts and best practices.
Capable of managing emerging information security risks and how these can be mitigated.
Additional Information
We’re committed to supporting our employees in every aspect of their lives, from health and wellbeing to financial security and lifestyle perks. Here’s a snapshot of the benefits you'll enjoy as part of our team:
Competitive salary: £23,000-£26,000
Health & Wellbeing: Private Medical Insurance, Health Cash Plan, Dental Insurance, Eye Care Vouchers, Flu Vaccinations
Finance & Protection: Life Assurance, Critical Illness Cover, Pension Plan, Long Service Awards, Payroll Giving, Fleet car provider
Leisure & Lifestyle: Cycle to Work Scheme, Holiday Trading, Travel Insurance
At our organization, we are committed to fighting against all forms of discrimination. We foster a work environment that is inclusive and respectful of all differences.
All of our positions are open to people with disabilities.
About the Company
SBS is a global financial technology company that’s helping banks and the financial services industry to reimagine how to operate in an increasingly digital world. SBS is a trusted partner of more than 1,500 financial institutions and large-scale lenders in 80 countries worldwide, including Santander, Societé Generale, KCB Bank, Kensington Mortgages, Mercedes-Benz, and Toyota FS. Its cloud platform offers clients a composable architecture to digitize operations, ranging from banking, lending, compliance, to payments, and con... Know more
Related Jobs
- Company Name
- RiverSafe
- Job Title
- Senior Business Development Executive - DevOps / Cloud / Cyber Security
- Job Description
- The Senior Business Development Executive is responsible for identifying, developing and closing new business opportunities and will be targeted on net new logo acquisition. The ideal candidate will possess knowledge of Cyber Security or AWS / Cloud / DevOps services, be a self-starter with strong sales acumen, and have professional services sales or consultative sales experience. **This is a hybrid role requiring some time in our London office each week - and with the flexibility to travel as required, to meet clients and attend industry events.** Identify and pursue new business opportunities in the IT services industry, with a focus on our core offerings of Cyber Security, DevOps and Application Security. Develop and execute strategic sales plans to achieve sales targets and expand the customer base. Build and maintain relationships with key decision-makers, influencers and stakeholders. Develop a deep understanding of clients' business objectives, challenges and opportunities related to Cyber Security, DevOps and AppSec, and present appropriate solutions. Provide consultative sales support to potential clients by demonstrating deep knowledge of the value our services provide. Skills Minimum of 4 years of professional service/consulting experience in business development or sales within the IT services sector, focused on Cyber Security, DevOps or Application Security. Proven track record of meeting or exceeding sales targets. Strong relationship-building skills with the ability to engage C-level executives. Excellent communication, negotiation and presentation skills. Proficiency in using CRM systems (e.g. Salesforce, HubSpot).
- Company Name
- TieTalent
- Job Title
- Cyber Security Engineer
- Job Description
- About Location : Bristol or Edinburgh, Hybrid. In this position, you’ll be based in the Bristol or Edinburgh office for a minimum of three days a week, with the flexibility to work from home for some of your working week. Find out more about our flexible work culture at computershare.com/flex. We give you a world of potential The Global Information Security (GIS) team is responsible for driving the development, deployment, monitoring and management of information and cyber security across the Computershare businesses, globally. Along with delivering a comprehensive portfolio of technical security control and monitoring services across all of the global Computershare environments. Through partnerships with the business units, Technology Services and other support functions, the Global Information Security team actively supports the business objectives whilst reducing the overall composite risk to Computershare. A role you will love The Cyber Security Engineer role has hands-on responsibilities for the implementation and maintenance of our on prem and cloud-related infrastructure and technologies. This role’s primary focus will be on the integration between cloud and on-prem security infrastructure. Responsibilities will expand into other technical information security projects and provide opportunities to cross-train and upskill in additional leading technologies. This role is part of a global team of information security professionals that deliver in-depth technical security services for our most critical applications and infrastructure, to ensure that they are highly resilient against existing and emerging cyber security threats. Key Accountabilities Provide technical design, implementation and maintenance of our technical security infrastructure and policies. Develop technical solutions and new security toolsets to mitigate security vulnerabilities and automate repeatable tasks. Build, implement and tune SIEM event correlation rules/logic, and content, to filter out security events associated with known network behaviour, known false positives and/or known errors. Build, implement and tune Web content protection rules/logic. Work with the Security Monitoring team to appropriately and practically defend the enterprise in accordance with established policies, procedures, guidelines and practices. Prepare and document standard operating procedures and protocols. Work with the Threat Intelligence and Cyber Assurance teams to monitor and research industry information sources, for zero-day threats and vulnerabilities that impact Computershare. Establish and maintain strong, collaborative working relationships with global and regional technology infrastructure, application, and architecture teams. What will you bring to the role? The successful candidate will have experience in developing, implementing, and monitoring security solutions, preferably with an Azure Security Engineer Associate certification or similar. You will have proficient knowledge of cloud architecture and its security concerns, along with a strong understanding of security protocols, encryption, and authentication methods/excellent troubleshooting skills. Essential Experience SIEM Data Loss Prevention Cloud Security IDS/IPS Email Threat Prevention Endpoint Detection and Response Identity Protection Privileged Password Management Identity Access Management Rewards designed for you Flexible work to help you find the best balance between work and lifestyle. Health and wellbeing rewards that can be tailored to support you and your family. Invest in our business by setting aside salary to purchase shares in our company, and you’ll receive a company contribution as well. Extra rewards ranging from recognition awards and team get togethers to helping you invest in your future. And more. Ours is a welcoming and close-knit community, with experienced colleagues ready to help you grow. Our handbook will help you find out more about our rewards and life at Computershare, visit https://computershare.com/careershub Nice-to-have skills Cloud Architecture Encryption Cloud Security Edinburgh, Scotland Work experience Cyber Security Specialist Languages English
- Company Name
- Quilter
- Job Title
- Identity Security Analyst
- Job Description
- About The Business Quilter plc is a leading provider of financial advice, investments and wealth management, committed to being the UK’s best wealth manager for clients and their advisers. Quilter oversees £119.4 billion in customer investments (as at end December 2024). It has an adviser and customer offering spanning financial advice, investment platforms, multi-asset investment solutions, and discretionary fund management. The business is comprised of two segments: Affluent and High Net Worth. Affluent encompasses the financial planning business, Quilter Financial Planning, the Quilter Investment Platform and Quilter Investors, the multi-asset investment solutions business. High Net Worth includes the discretionary fund management business, Quilter Cheviot, together with Quilter Cheviot Financial Planning. At Quilter we never stand still. Our foundations are rooted in our extraordinary expertise, which is trusted by hundreds of thousands of customers, but we have great ambitions to stay one step ahead and make an even greater difference to the people and communities we serve. Our business is transforming, continually modernising, and becoming even more customer centric. So, if you want to be bold in the pursuit of your ambitions, bring new ideas, and challenge and evolve what we do, it’s the perfect time to join us! About The Role Level: Level 3 Department: Technology: Information Security Location: Southampton or London Contract type: Permanent The Security Architecture team at Quilter provide standards, guidance and expert challenge in support of Quilter across strategic Programmes and Projects, corporate actions, new supplier onboarding and ad-hoc requests. Our goal is to enable the business to deliver solutions that are Secure by Design in an efficient and predictable way through a consistent, modern control base and through timely and appropriate design and implementation guidance. The role will work with a small team of Security Architects who work collaboratively with the broader Technology Architecture community in support of Quilter’s initiatives. The role will also work closely with colleagues across Infrastructure team, Security Operations team and broader Information Security function to continuously improve tools and processes in this space. The Identity Security Analyst will own Identity Security at Quilter, supporting Security and Enterprise Architects as appropriate, and working with stakeholders across the business and technology to ensure Identity Security controls are well designed and effectively delivered. The role would suit an experienced Security, End User or Infrastructure Analyst looking for a step into Security Architecture. Key responsibilities: Act as the technical Identity Security lead at Quilter, supporting the Security Architects Define, maintain and own the technical standards in relation to Identity across Enterprise and Customer Authentication, Authorisation, Access Management, Identity Management and Adaptive Trust / Zero Trust concepts. Define appropriate, but proportionate, metrics to effectively measure our identity risk and work with our Governance, Risk and Controls team to ensure they are reported coherently. Provide input and approval for processes that have been designed by our operational teams to achieve our Identity Security standards. Work with the Information Security and Wider Technology Leadership teams, in particular our Digital Technology team, to drive the roadmap for Identity Security tooling and controls Support Security Architects with Identity Security related items across projects and initiatives Act as a point of escalation for Identity Security issues Act as a trusted advisor to the Head of Information Security and the CIO on Identity Security related matters Maintain strong understanding of identity related risks and ensure any risks to Quilter’s environment are robustly assessed Be responsible for assuring delivery of key BAU identity and access related processes, to ensure they align to expected standards About You Exceptional understanding of the risks associated with poor identity security management and typical patterns used to resolve / mitigate these risks is essential Experience working with Identity Provider (IdP) tooling such as Microsoft Entra ID / Active Directory is essential Broad understanding and/or experience of working with concepts and capabilities such as Identity Governance, Authorisation, Authentication, Privileged Access Management (PAM), Privileged Identity Management (PIM) and Cloud Infrastructure Entitlement Management (CIEM) is essential Experience with implementing Zero Trust concepts, including Conditional Access or Adaptive Trust type controls is desirable Understanding of machine identities and managing these as part of a cloud-first DevOps model, enabling secure and efficient development is desirable Practical experience of cloud-native concepts such as Cloud Security Posture Management (CSPM) and SaaS Posture Management (SSPM) is desirable Excellent attention to detail and ability to work comfortably with data in Microsoft Excel (essential) and Power BI (desirable) Business outcome orientated with a desire to apply technology and security to enable delivery Drive to continually develop skills, maintain expertise and relevance in a fast-changing technology and threat landscape Holding, or willingness to study for, qualifications such as CISSP, CISM, Microsoft Security Certifications or similar is desirable Collaborative style, ability to communicate effectively and work with Security, Technology and Business Stakeholders of all levels of seniority Excellent written and verbal communication skills Inclusion & Diversity We value diversity and strive to promote inclusivity in all aspects of our culture. We believe in equal opportunities for all, ensuring that no applicant encounters less favourable treatment based on anything but their skills, qualifications, experience, and potential. We celebrate the unique contributions of a diverse workforce and create a respectful, nurturing environment where every colleague can thrive. Values Do the right thing: We act with integrity and are proudly committed to going above and beyond in service of our clients and the support we provide our communities. Always curious: We continuously seek new ideas and knowledge so we’re one step ahead of our clients’ needs. We look for inspiration everywhere and encourage experimentation, recognising that this is how we create brilliant solutions for brighter futures. Embrace challenge: We aim high to transform our potential into meaningful outcomes. With ambition as our driving force and a steadfast commitment to growth, we succeed for the good of every generation. Stronger together: Combining our diverse talents, we accomplish more collectively than we ever could do alone. We speak openly, actively listen, and support each other, and constructively challenge and embrac...
- Company Name
- Endava
- Job Title
- SOC Manager (Security Operations Manager)
- Job Description
- Company Description Technology is our how. And people are our why. For over two decades, we have been harnessing technology to drive meaningful change. By combining world-class engineering, industry expertise and a people-centric mindset, we consult and partner with leading brands from various industries to create dynamic platforms and intelligent digital experiences that drive innovation and transform businesses. From prototype to real-world impact - be part of a global shift by doing work that matters. Job Description We are seeking a Security Operations Manager to lead and enhance our global Security Operations Center (SOC) across multiple regions. This role is responsible for strategic leadership, operational oversight, and continuous improvement of security monitoring, incident response, and threat detection capabilities. The ideal candidate has strong leadership skills, a deep understanding of SOC operations, and experience in managing global security teams to ensure a proactive and effective security posture. Responsibilities: Lead and manage the global Security Operations Center (SOC), ensuring 24/7 security monitoring, incident response, and threat management. Develop and execute SOC strategies to enhance security operations, automation, and efficiency. Oversee SOC processes, staffing, and operational workflows to align with business and security objectives. Drive continuous improvement in SOC capabilities, ensuring adherence to industry best practices and frameworks (NIST, MITRE ATT&CK, ISO 27001, SOC2, etc.). Establish and refine KPIs, metrics, and reporting to measure SOC performance and risk reduction. Lead the incident response function, ensuring rapid detection, containment, and remediation of security incidents. Oversee threat intelligence integration and proactive threat hunting efforts to identify and mitigate risks before exploitation. Collaborate with cross-functional teams to improve security response capabilities and drive automation using SOAR platforms. Act as the primary escalation point for major security incidents, coordinating response and communication across global teams. Build and mentor a high-performing global SOC team, fostering a culture of continuous learning and collaboration. Define and implement SOC training programs, including tabletop exercises and attack simulation drills. Ensure SOC analysts, engineers, and threat hunters are aligned with emerging threats and evolving security landscapes. Oversee the implementation and optimization of security technologies, including SIEM, SOAR, EDR, IDS/IPS, and cloud security tools. Drive SOC automation and orchestration to improve response times and operational efficiency. Collaborate with IT, DevOps, and Security Engineering teams to integrate security best practices into broader business processes. Qualifications Required Qualifications & Experience: 5+ years of experience in security operations, SOC management, or cybersecurity leadership roles. Proven experience leading global security operations teams in an enterprise environment. Strong understanding of SOC tools and technologies Experience with security frameworks such as MITRE ATT&CK, NIST, ISO 27001, SOC2, and CIS Controls. Expertise in incident response, threat intelligence, and security automation. Strong leadership, stakeholder management, and communication skills. Familiarity with cloud security best practices (AWS, Azure, Google Cloud). Ability to work in a fast-paced, high-pressure environment and handle security incidents efficiently. Preferred Qualifications: Security certifications such as CISM, CISSP, GCIA, GCIH, CSOM or SOC-related credentials. Experience in security automation and orchestration (SOAR) to improve SOC efficiency. Experience working with regulatory compliance (SOC2, ISO27001, GDPR, NIST 800-53, etc.). Additional Information Discover some of the global benefits that empower our people to become the best version of themselves: Finance: Competitive salary package, share plan, company performance bonuses, value-based recognition awards, referral bonus; Career Development: Career coaching, global career opportunities, non-linear career paths, internal development programmes for management and technical leadership; Learning Opportunities: Complex projects, rotations, internal tech communities, training, certifications, coaching, online learning platforms subscriptions, pass-it-on sessions, workshops, conferences; Work-Life Balance: Hybrid work and flexible working hours, employee assistance programme; Health: Global internal wellbeing programme, access to wellbeing apps; Community: Global internal tech communities, hobby clubs and interest groups, inclusion and diversity programmes, events and celebrations. Our diversity makes us stronger - it drives meaningful change and enables us to build innovative technology solutions. We are committed to creating an inclusive community where all of us, regardless of background, identity, or personal characteristics, feels valued, respected, and free from discrimination. As an equal opportunity employer, we welcome applications from all individuals and base hiring decisions on merit, skills, qualifications, and potential.