Information Security & Cyber Policy Risk Manager required for global banking organisation. This role sits in the The Group Chief Information Security Officer (CISO) organisation.

The Information & Cyber Security Policy Risk Manager will be part of an international team responsible for the creation of new control documents, the review of existing control documents and the rollout of Information and cyber security policy related controls .

As a strategic role, it will require strong business acumen and detailed knowledge of information security & cyber security policies and procedures. The successful candidate will be someone who has finely tuned understanding of the challenges of policy implementation and can respond in an agile and collaborative manner to ongoing business and regulatory requirements.

The Information & Cyber Security Policy Risk Manager will face off to the business and be a first class communicator with strong C-level stakeholder management skills. They will play the lead role in driving key policy projects and programmes, the creation of a strategy for developing Policy outreach and awareness and contribute to the strategic plans for the policy and awareness teams.

The position will require some international offices to maintain contact with members of your team and key regional stakeholders in global security business units but it is likely to be 1-2 trips a year.

Applications from candidates with security related degrees and relevant security industry certifications such as CISSP, CISM, CISA are welcomed.

For more information on this role please contact Neil Morgan at McGregor Boyall

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Identity & Access Management engineer required for global information services provider. With the option to be based in London or remotely/ at home , the Identity & Access Management Engineer will play a lead technical role for all Microsoft based Identity and Access Management Technologies.

The Identity & Access Management Engineer will come with a good understanding of Identity and Access Management best practices, Microsoft Identity Manager and related security concepts including expert skills in designing, implementing and managing Microsoft Azure AD environments, including claims based authentication, conditional access, Azure AD Connect and Password management. Strong skills writing moderately complex Powershell Scripts to enable automation in the Microsoft environment are extremely desirable.

The Identity & Access Management Engineer will have 5-7 years of experience in a full time technical role designing, managing, maintaining and troubleshooting a Microsoft-oriented Identity and Access environment.

Professional certifications including ITIL, project management, business analysis are highly desirable as is experience using Agile Scrum work delivery methods. The Identity & Access Management Engineer will be confident, self assured and come with strong communication and key stakeholder management skills.

Candidates with Security related degrees and certifications such as CISSP, CISM, CISA are invited to apply.

Home based / remote candidates can be considered for this role.

For more information on this role please contact Neil Morgan at McGregor Boyall.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Cyber Security Manager

Our prestigious insurance claims client is looking for an excellent security professional to join their organisation and provide a focal point for information security and information risk.

Key Responsibilities:

• The Cyber Security Manager will be responsible for assessing, approving and advising on all information security matters
• As the Cyber Security Manager, you will be assisting the IT Director with budget setting for security
• You will be documenting security and compliance systems
• Co-ordinating system penetration testing in order to compliance guidelines
• The Cyber Security Manager will coordinate the response to any information security incidents
• As the Cyber Security Manager, you will perform risk assessment reviews and relay this to senior management
• The Cyber Security Manager will plan and manage Information Security Management Standards (ISO270001 etc)
• As the Cyber Security Manager, you will train IT staff in security best practice

Required Skills / Experience:

• The Cyber Security Manager will have had ample experience within a Security Manager / Analyst position
• This is an advisor role and so the ideal candidate will be able to enable the business on security matters
• Thorough understanding of the impacts on Security on a business
• Having had experience in management and leadership would be desirable
• Any industry certifications would be advantageous – Certified Information Systems Security Professional (CISSP) – ISO27001 Certified ISMS Lead Implementer – Certified Information Security Manager (CISM) – Certificate in Information Security Management Principles (CISMP)

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Cloud Risk Assessment Specialist - Permanent - Sheffield

We are currently seeking an experienced individual to join our client's team in the role of Cloud Risk Assessment Specialist.

This role will have you working alongside some of the best security professionals and technologies in the industry. Our client can also offer some of the best pension and bonus schemes available in the UK.

Responsibilities

• Lead and support peers within the Cybersecurity function to define and implement an industry leading Cloud Security Assessment Service that supersedes our constantly changing information security threats.
• Participate and designs best practices in relevant subject matter across the business.
• Ensure adherence to the three lines of defence organisational model with clear lines of responsibility, accountability and segregation of duties.
• Ensure compliance with internal audit and external regulators that any organisational changes are fit for purpose and meet their expectations
• Collaborate with relevant stakeholders to enhance the delivery of a Cybersecurity strategy to secure technology from the inside out.
• Contribute to the overall definition of responsibilities and accountabilities of Cybersecurity and build a team which supports the Cybersecurity model and defined strategy
• Provide supervision, guidance and mentor less experienced members of a team.
• Maintain contact with relevant internal teams/forums and external regional associations, specialist interest groups, government agencies, forums, etc.

Essential Requirements

• Experience delivering security risk assessment for Cloud and Internet facing applications.
• Experience with application development and security using DevOps, defining and implementing infrastructure pipeline security controls.
• Practical experience of working in cloud, with subject matter expertise of Cloud Security and implementing security controls on these platforms
• Excellent interpersonal skills to effectively promote ideas and collaboration at the various levels of the organisation
• Understanding of common protocols and cryptographic standards and ability to guide secure implementations
• Knowledge and experience with network, host and application security practices
• Excellent analytical skills, organisational skills, ingenuity and the ability to work as part of a team
• Extensive experience with IT, cybersecurity best practices, risk assessment and/or security testing/ethical hacking
• Be highly skilled in 1 or more Cybersecurity Domains.
• Have extensive leadership experience (projects, resource etc.)

Desirable Requirements

• Experience across all major cloud service providers: AWS, Google and Azure preferable.
• Professional Qualification: CISSP/Cloud Certifications will be an added advantage

Cloud Risk Assessment Specialist - Permanent - Sheffield

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Test Analyst
Market leading international banking client is looking to add a Test Analyst to their Financial Crime technology team. These roles are all conveniently located in Glasgow city centre and will see you involved in carrying out regression, functional testing and re-testing.
You’ll also find yourself involved in the design and implementation of test cases, all while working within the Agile Scrum framework.
Essential Skills for this role include:-

• Previous exposure to Agile, SWIFT and SEPA
• A solid grounding in AML technology
• Previous experience in the planning and execution of User acceptance testing
• Hands-on experience in data concepts, e.g. ETL, SQL, Ab initio, Unix and RDBMS
• Regression and functional testing expert

In return you’ll find a modern, flexible office environment providing genuine work/life balance, as well as the opportunity to work with some cutting-edge data techniques and tools. You’ll be rewarded with home working, flexi time and a market leading remuneration package.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Senior Business Analyst (AML / Data)

Market-leading banking client are looking to add a Senior Business Analyst to their Glasgow based team involved in the fight against international financial crime.

The role will see you working with a range of stakeholders to help further develop and improve their transaction monitoring toolkit: gathering requirements, producing functional reqs and mapping as/is, to-be. You’ll find yourself working within both the Agile and Waterfall framework for assigned project – leading business analyst work in the data transformation the AML programme

To succeed in this role you should have the following experience:

• Strong business analysis background
• Lean / Agile qualified.
• Exposure to the financial services industry.
• Experience of complex data-mapping issues.
• BRD, FRD and ETL experience.

In return you’ll find a modern, flexible office environment providing genuine work/life balance, as well as the opportunity to work with some cutting-edge data techniques and tools. You’ll be rewarded with home working, flexi time and a market leading remuneration package.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

ETL Technical Lead
International banking client is looking to add a senior / lead ETL developer to join a new team tackling financial crime. Based in Glasgow you’ll be working colleagues across the globe to develop technical solutions to these modern-day issues.
The role will see you leading an EMEA ETL / Database development team to deliver assigned projects. Working with users to analyse needs and software requirements before working on design and development of new and existing programs.
The successful candidate should have skills in most of the following:-

• Broad experience delivering ETL solutions (any from Informatica, Infosphere Information Server, Oracle Data Integrator, SSIS or Ab Initio)
• Previous exposure to various database technologies (Oracle / SQL Server)
• Data modelling and data acquisition
• Ideally financial services sector exposure
• Familiarity with OBIEE dashboard
• Any prior experience in Sandbox analysis

In return you’ll find a modern, flexible office environment providing genuine work/life balance, as well as the opportunity to work with some cutting-edge data techniques and tools. You’ll be rewarded with home working, flexi time and a market leading remuneration package.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Our client, a leading name in the Financial Services is looking for An IT Risk Assurance Analyst is required for an initial 6-month contract.

The IT Risk Assurance Analyst / Consultant will be tasked with providing testing and assurance on existing IT risk controls aligning with regulations and internal requirements across all IT teams.

The IT Risk Assurance Analyst / Consultant will ensure remediation requirements are owned and actioned in a risk based and satisfactory conclusion. As the IT Risk Assurance Analyst / Consultant, you will report and action on weaknesses relating to controls and suggest improvements whilst also identifying the impact on the business.

The IT Risk Assurance Analyst / Consultant will come with a detailed understanding of Technology Governance processes, come from a Risk Framework background, and a proven track record of delivery in a project environment. The ideal candidate will have proven experience of implementing or monitoring 1^st Line of Defence control frameworks in fast paced financial technology teams.

Previous Team or Line Management experience is welcomed as are one or more of the following certifications; ISO270001, CISA, CISM, CISSP, CRISC

For a more detailed job spec please contact Neil Morgan or Paige Jordan at McGregor Boyall.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Identity and Access Management Analyst with strong Governance and Assurance knowledge required for long term contract within major financial services organisation.

The Identity Access Management Governance & Assurance Analyst will work closely with the IAM, Projects and other technology teams where their responsibilities will include giving expert guidance on SailPoint and CyberArk , advising key stakeholders on IAM Best Practice, and be a subject matter expert in this space. The IAM Governance & Assurance Analyst with be a point for contact for external IAM Consultants and vendor partners in the implementation of new solutions and capabilities.

The IAM Governance & assurance analyst will be familiar with IAM solution design methodologies, and have the ability to generate high quality deliverables such as requirements, high level designs, and be comfortable working in a project environment, with the ability to work easily with diverse and dynamic teams.

The Identity Access Management Governance & Assurance Analyst will have demonstrable experience of CyberArk, Sailpoint and Network File Access Management solutions and represent the team in audits involving SailPoint & CyberArk as an IAM subject matter expert.

The IAM Governance & Assurance analyst will come with first class written, verbal and stakeholder management skills and be comfortable dealing at C-level within the organisation.

For more information about this role please contact Neil Morgan at McGregor Boyall.

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.

Information Security Analyst

Our prestigious insurance client is looking for a talented Information Security Analyst, and you will be working alongside the Information Security and Governance Manager.

As a Security SME, you will have a strong understanding of Security Domains including:

• Vulnerability Management
• Malware Protection
• Security Incidents Management
• DDoS Protection
• NIST Framework
• CIS20 and topics contained, or equivalent, is advantageous

Key Responsibilities:

• The Information Security Analyst will assist with the creation and delivery of the Cyber Security Program, to ensure that the Cyber program is in line with the objectives of IT and Cyber Risks
• As the Information Security Analyst, you will be responsible for identifying, analysing, reporting to stakeholders and formalising cyber security risks
• Security Incident analysis and management
• Communicate effectively across multi-functional teams, both technical and non-technical
• Conducting vulnerability scans

Required Skills:

• Prior experience with attack monitoring, Intrusion Prevention (IDS/IPS), SIEM, WAF, Firewalls and Identity Access Management (IAM) will be required from the Information Security Analyst
• Having had experience previously with security vulnerability tools and techniques is essential for the Information Security Analyst

Required Qualifications

• Security related degree or relevant industry qualifications including: CISSP (Information Systems Security Professional), CISA (Certified Information Systems Auditor), CISM (Certified Information Security Manager), CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional), CIS20 or equivalent

McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.