Senior Information Security Analyst

Job Description

To support the IT Risk & Security Manager in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bell’s systems and services. Key to this is maintaining the confidentiality, integrity and availability of the data that resides upon those systems.

Additionally, this role will be responsible for coordinating and responding to activities affiliated with external/internal IT audits as well as due diligence exercises requested by our external business partners and those we perform on our suppliers.

Key responsibilities:

• Assessment, planning and co-ordination of patch management activities for internal systems and hardware
• Overseeing vulnerability scanning to confirm the effectiveness of patching
• Assessing and recommending server hardening activities to be completed by the Infrastructure and Service Delivery teams
• Undertaking risk profiling of AJ Bell’s information and technology assets
• Supporting and advising on projects and change initiatives to ensure that there is no negative impact on our security posture
• Supporting the administration of email and web gateways
• Monitoring external information sources to make recommendations on latest security threats and vulnerabilities that affect our technical estate

Essential experience, knowledge and skills:

Strong understanding and knowledge of Information Security risk management tools and techniques

• Experience of Information Security standards and frameworks
• Awareness and understanding of the Information Security threat landscape
• Understanding of Information Security solutions e.g. email / web gateways, SIEM, Endpoint protection etc.
• Knowledge/experience working with firewalls is highly advantageous
• Awareness of Cloud security solutions and standards is highly advantageous
• Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc.
• Experience in an Information Security role gained in a financial services or e-commerce environment is preferred
• Ability to challenge approach, strategy and implementation to ensure Information Security is consistently considered and improved
• Structured, self-starting, flexible and enjoy working in fast-paced environments
• Ability to plan, organise and follow through on assigned tasks and complete with little or no prompting from management

About us:

AJ Bell is one of the UK’s largest and best-regarded investment platforms. Over 455,008 customers currently trust us with their investments, and by continuously striving to make investing easier, we aim to help even more people take control of their financial futures. From our offices in Manchester, London and Bristol, we offer an award-winning range of solutions that caters for everyone, from professional financial advisers, to DIY investors with little to no experience.

There are opportunities for growth and professional development for members wanting to progress within their career including induction training and our study support scheme which is part of our benefits package.

At AJ Bell you can expect a friendly working environment with a strong sense of teamwork, we have a great sense of pride in what we do, and this is reflected in our guiding principles.

What we offer:

• £50,000-£60,000 starting salary
• 25 days holiday allowance increasing up to 30 days with service, plus bank holidays
• Holiday buy/sell scheme - up to 5 days
• Hybrid working policy
• Casual dress code
• Discretionary bi-annual bonus
• Contributory pension scheme
• Buy as you earn share scheme
• Free shares scheme
• Paid study support for qualifications
• Enhanced maternity/paternity scheme from day one
• Bike loan
• Season ticket loan portal
• Discounted PMI and Dental
• On-site gym and personal trainer led classes
• Paid volunteering opportunities
• Free social events and more

AJ Bell is committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and all employees are empowered to bring their whole self to work.

We do not discriminate on the basis of race, sex, gender identity, sexual orientation, age, pregnancy, religion, physical and mental disability, marital status and any other characteristics protected by the Equality Act 2010. All decisions to hire are based on qualifications, merit and business need.