Application Security Manager

SUMMARY

An Application Security Manager position that requires previous Financial Services experience.

CLIENT DETAILS

A leading Financial Services organisation based in the City.

DESCRIPTION

In collaboration with members of the Systems Administration, Database Administration, Architecture and Engineering, IT Development and Application Support teams, the person in this position will implement practical solutions to secure the bank's information assets with a particular focus on the core banking applications. This will involve implementation of preventative, detective and corrective controls based on Bank policy/standards to ensure industry good practice and regulatory requirements for existing IT solutions and future developments.

Implementation of security technologies or processes requires the agreement and support of many teams within IT and the business. This role includes the coordination and co-development of solutions; providing recommendations and potential solutions to the Chief Information Security Officer to make the final decision and working with the relevant teams to ensure successful implementation of the solution.

Application Security - ensure that application architecture, configuration, access controls, auditing and monitoring meet the Bank's security requirements and comply with all applicable regulations.

Security Liaison for Application Projects - support project teams in defining security requirements at appropriate times within the development life cycle and assist in the identification, testing and implementation of 'best practice' security solutions.

Secure coding - standards definition and monitoring of compliance with secure coding practices.

Database Management System Security - ensure that the Database Management System's architecture, configuration, access controls, auditing and monitoring meet the Bank's security requirements and comply with all applicable regulations.

Web Application Security - compliance, auditing, testing, web application pen tests, application configuration reviews etc.

Security Assessments - conduct security assessments for web and other applications; communicating recommendations as it pertains to security threats, countermeasures, security tools, and network technologies.

PROFILE

Experience of securing application technologies (generic application controls). ISO 27001/2 knowledge Knowledge of European legal and regulatory requirements. Financial services experience Understanding of the business processes and associated risks enabled by the IT solutions (eg cash management, foreign exchange, money market, loans, trade finance, settlement, risk management, financial accounting and management reporting). Knowledge of operating systems and database security controls Experience of integration and application infrastructure software (eg WebSphere Application Server, WebSphere MQ Workflow). Good interpersonal skills and the ability to present effectively to different types of audiences. Ability to manage time and tasks effectively. Ability to articulate thoughts and recommendations both in written and verbal format to both IT staff and business staff.

JOB OFFER

6 month Contract opportunity paying circa £300 per day.