Security Consultant - Architecture

Role – Security Consultant – Architecture

Location – London

Duration – c18 months

About us

DL is evolving. Across every part of our business, teams are embracing new opportunities and putting customers at the heart of everything they do. Whether you're already part of DL or thinking about joining us, you'll have the chance not only to be recognised for your skills, but also to build on them and be empowered to do your very best. 

At Direct Line, we know our customers expect simple, brilliant experiences — and to deliver on that promise, we need the right systems in place.

Combining decades of industry experience with talented people in every field, we’re a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day.

What you’ll be doing

The Security Consultant (Architecture) is a role within our Security Design, Innovation & Enablement team. You will enable secure business change and run initiatives whilst ensuring the business remains secure and resilient.

You will be working closely with Solutions Architects, Engineering Leads, Product Owners, Project Managers etc and be the security architecture SME that provides security consultancy, design and architecture input that ensures secure and resilient business solutions. You will promote an environment and culture of continuous improvement, experimentation and innovation.

You will:

• Develop and maintain relationships with aligned product areas. You will develop a deep understanding of your stakeholder, third parties, processes, technologies, data, and the direction of travel for your aligned business units.

• Safeguard the security and resilience of your aligned business unit(s). Supporting our security posture within risk appetite, support incidents if they occur, and deliver security within change programmes.

• Understand stakeholder risk and control requirements, advising accordingly.

• Advise on the most efficient way to deliver change whilst remaining secure and resilient and using our policies, standards, guardrails and patterns. Developing new patterns and standards where required.

• Acting as the front door for CISO for your stakeholders. You will be the trusted partner that they deal with most often.

• Ensuring appropriate prioritisation of security and resilience requirements.

• Guiding stakeholders to manage risks appropriately.

• Participate in CISO governance, peer reviews, stage gates, and KPI reporting.

• Identify areas of improvement in processes, standards, documentation, and proactively work on enhancements.

• Maintain an awareness of industry trends, laws, regulations, threats, and technology developments.

• Reporting and escalation of gaps, risks and issues, delivery status, risk posture etc to the CISO Chapter Area Lead and others within CISO

What we’re looking for        

• Has a deep understanding of cyber security architecture, technologies, controls, privacy, resilience, threat modelling, risk management, PCI, and data protection.

• Ability to build and maintain relationships and influence stakeholders at various levels

• Has a keen technology, regulatory and resilience focus: you are passionate about security, improving solutions and processes, streamlining and efficiencies, cloud native, software development practices including continuous delivery, etc

• A self-starter who can proactively manage and prioritise work across multiple workstreams simultaneously

• Share knowledge with peers

• Active continual personal and professional development

Desirable Skills:

• Experience of one or more security controls frameworks including ISO 27001, NIST CSF, Cyber Essentials Plus

• Relevant security and architectural certifications including CISSP, CCSP, AWS, Azure, CIS, CSA, TOGAF, SABSA, CompTIA Security+, CISM

Ways of Working

Our hybrid model offers a 'best of both worlds' approach. When you'll be in the office depends on your role and team, but colleagues spend at least 50% of their time in the office.

We want everyone to get the most out of their time at DLG. Which is why we’ve looked beyond the financial rewards and created an offer that takes your whole life into account. Supporting our people to work at their best – whatever that looks like — and offering real choice, flexibility, and a greater work-life balance that means our people have time to focus on the things that matter most to them. Our benefits are about more than just the money you earn. They’re about recognising who you are and the life you live.

Benefits

We recognise we wouldn't be where we are today without our colleagues, that's why we offer excellent benefits designed to suit your lifestyle:

• Annual performance-based bonus

• 9% Private Pension

• 50% off home, motor and pet insurance plus free Green Flag breakdown cover

• Additional optional Health and Dental insurance

• EV car scheme allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way.

• Generous holiday allowance

• Buy as you earn share scheme

• Employee discounts and cashback

• Plus, many more

Be yourself

Direct Line Group is an equal opportunity employer, and we think diversity of background and thinking is a big strength in our people. We're delighted to feature as one of the UK's Top 50 Inclusive Employers and are committed to making our business an inclusive place to work, where everyone can be themselves and succeed in their careers.