We love to do things differently in CSO. We encourage our employees to challenge the status quo and to come up with new and innovative idea. We're focused on creating a values-led culture and are committed to building a workforce which reflects the diversity of the customers and communities we serve. Together we're building a truly inclusive workplace where all of our colleagues have the opportunity to make a real difference.Here at Lloyds Banking Group we're building the bank of the future, and we want your help to ensure we do that with security at the heart of all our change. With over 26 million customers, we're the UK's largest Retail and Digital Bank, and with 100,000 colleagues, the scale of services, customers, and colleagues you can help protect is EPIC.What will you be focussing on:Lloyds has a strong supplier assurance function, and were looking to strengthen it further. We're looking for a Supplier Security Specialist who will play a key part in helping to ensure our suppliers SaaS offerings are secure and are aligned to LBG Security Standards. As part of the Cyber Product Assessment team, you l lead on the assurance of new potential SaaS solutions, as well as revalidating the assurance we have for existing ones.The day to day will consist of:
Take ownership for embedding the SaaS assurance review into existing supplier and project processes.
Request, review and assess responses from suppliers against LBG Security Standards to ensure suppliers are compliant with group standards.
Highlight non-compliances and risks associated with using a particular SaaS Products / Suppliers, in line with existing risk and non-compliance processes.
Embed a process for reviewing required suppliers on a regular basis after they have been optimally onboarded.
What were seeking in you:
Understanding of supplier assurance and outsourcing requirements that Financial Services must comply with.
Experience of providing assurance against Cloud suppliers and products (IaaS, PaaS and SaaS), as well as, and on-premise outsourcing.
Experience of managing multiple senior stakeholders, with sometimes conflicting viewpoints.
Knowledge of industry-wide standards (e.g., NIST, PCI-DSS, CIS, OWASP)
Understanding of technical security risks & controls and management of these, supported by experience.
Ability to build & maintain relationships within the team and across other Group security functions.
What you'll get in return:You'll get the stretch and opportunity to learn new technologies within a well-funded organisation and take your next step up the career ladder into bigger and more complex roles. You'll also will also enjoy a diverse, energising, and informal environment that focuses on teamwork and providing equal opportunity with working patterns beyond the standard 9-5.You'll get a salary of between GBP70-80,000 based out of our London hub. Other regional hub locations are welcome however salary will reflect accordingly.
You'd get a benefits package that includes:
A performance related bonus
Generous pension contribution
28 Days leave plus bank holidays
A flexible cash pot (4% of base salary) to spend on benefits
Private health cover
We're dedicated to giving you opportunities and support to develop you both expertly and personally to optimise your potential.
As a new colleague, you'll join us on our journey to build a 21st century bank that reflects modern Britain, and craft an inclusive culture where all colleagues feel encouraged and valued.
If this opportunity sounds like a great match, we'd love to hear from you where together we can make it possible!