Lead Security Specialist

As the Lead Security Specialist at HL, you will join a team of security experts working with various modern technologies to ensure the security of HL's products. You will oversee security issues and requirements for all product teams, dealing with complex projects daily and serving as the escalation point for the Product Security Specialist (PSS). You will lead threat modelling workshops and engage with key stakeholders to identify threats and recommend countermeasures. Additionally, you will lead a team of Product Security Specialists, providing leadership, technical guidance, and support in tailoring their development to meet their individual needs.

What you'll be doing

• Overseeing security issues and requirements for all product teams/squads.
• Working within Product teams, you will be the single point of contact for security related matters ranging from daily significant change to complex Cloud serverless transformation projects.
• Leading a team of Product Security Specialist (PSS).
• Providing leadership, technical guidance, and support to the Product Security Specialists.
• You will lead/facilitate threat modelling workshops with SMEs.
• Engaging with key stakeholders to identify threats and recommend countermeasures.
• Collaborating with strategy, transformation, and digital engineering parts of HL to develop and manage the implementation of secure cloud architectures.
• Supporting in the creation and implementation of architecture blueprints and proof of concepts on Cloud platforms supporting best practice, secure by design.

About you

• Demonstrable experience in a Security related role.
• A proven track record, of working with one or more of the main cloud vendor platforms, specifically AWS.
• Certifications such as AWS Solutions Architect, Azure Solutions Architect are desirable.
• Previous management experience.
• Excellent communication skills, including communicating complex technical concepts to non-technical stakeholders.
• Technical background across multiple security domains and familiarity with cloud security standards
• Experience within an Agile and DevSecOps context.TH
• Problem solving skills - with the ability to use own experience to develop pragmatic solutions and resolve complex issues.
• Accomplished in forging effective relationships at all levels, skilled at influencing and negotiating.
• Certifications such as CISSP, CEH, OSCP, or GSEC are preferrable.
• Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO
• Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS.
• Experience in conducting threat modelling and risk assessments.

Interview process

The interview process for this role is two stages including a technical competency-based questions and a task.

Working Schedule

This role is based in Bristol head office, BS1 5HL. This role is permanent, full time, 37.5 hours per week, Monday to Friday. We have returned to the office, however for this role we offer a hybrid flexible working pattern to enable you the option of working from home and coming into the office with 1 day in the office a week.

Why Us?

Here at HL, we're the UK's number 1 investment platform for private investors, based in Bristol. For more than 40 years we've helped investors save time, tax and money on their investments.

To achieve our mission, we believe we have a workplace like no other, with constant learning, dynamic teams, and a great ethos. We're steered by core values that promote service, quality, innovation, and opportunity in everything we do.

What's on offer?

• Discretionary annual bonus* & annual pay review
• 25 days* holiday plus bank holidays and 1-day additional Christmas closure time
• Option to purchase an additional 5 days holiday per year at annual enrolment
• Flexible working options available, including hybrid working
• Enhanced parental leave
• Pension scheme up to 11% employer contribution
• Sharesave scheme - have a real stake in HL's future
• Income Protection & Life insurance (4 x salary core level of cover)
• Private medical insurance*
• Health care cash plans - including optical, dental, and out patientcare
• Help@hand and an Employee Assistance Programme
• Gympass - gym memberships and wellbeing apps available
• Variety of travel to work schemes with free bike storage and shower facilities
• An inhouse barista serving subsidised coffee and snacks
• Join HL's sports, I&D networks and volunteering groups (two paid volunteering days per year)
• LifeWorks Discounts on services, restaurants and retailers
  * dependant on role level

Hargreaves Lansdown is an inclusive employer that values diversity in its workforce. We encourage applications from all individuals without regard to race, religion, gender, sexual orientation, national origin, disability or age.

This role may also be available on a flexible working or part time basis - please ask the Recruitment & Onboarding team for more information.

Please note, we are unable to provide employment sponsorship to candidates.