Security Guardrails Specialist
  • United Kingdom Manchester
  • Lloyds Banking Group
1 year before
31.12.2023
Oversee and Govern
Cybersecurity Management
Job Description

At Lloyds Banking Group we're building the bank of the future, and we want your help to ensure we do that with security at the heart of all of our change. With over 26 million customers, we're the UK's largest Retail and Digital Bank, and with 65,000 colleagues, the scale of services, customers, and colleagues you can help protect is EPIC.


The Groups' purpose is to help Britain prosper by operating as a responsible, sustainable, and inclusive organisation. We support this goal within Cyber Security by ensuring our design and delivery teams are equipped to make smart, innovative, and secure decisions. We put the customer first, and secure technology plays a pivotal role in how we make things more accessible, secure, and convenient for people.


Sounds an exciting prospect, right? Are you someone who wants to be in at the heart of this change, helping to define what Security Standards look like for LBG moving forward?

As our Cyber Security Standards Specialist you'll join our team, playing a key part in ensuring that the Lloyds Banking Group Security Standards are clear, effective and align to industry best practice.


As part of the LBG Security Standards Service, you'll provide standards expertise to our internal customers: author new standards and building consensus to amend existing standards as our environment evolves. If you have an eye for detail, can connect with individuals of all technical levels, and would enjoy the challenge of defining what security standards look like for Lloyds Banking Group, then you could be just the Security Specialist we're looking for.


Join us in CSO where you'll:

Provide expertise to our internal customers by advising how to interpret and apply security standards, producing detailed guidance where it can be useful to colleagues in future.
Author, publish and communicate any new or amended our Security https://www.linkedin.com/redir/invalid-link-page?url=Standards%2eWork constructively with varying stakeholders to develop consensus on the requirements captured within the LBG Security Standards.
Liaise with the consumers of the LBG Security Standards to identify issues with the application of the security standards, collaborating with the team to consider whether any changes to them would be appropriate.Stay on top of industry trends / initiatives and articulate that to the wider Cyber Security team and community.

What we'd like to see:

Focus on customers and delivering good overall outcomes.
Experience of managing multiple senior stakeholders, with sometimes conflicting viewpoints.
Background and deep knowledge covering more than one security domain (e.g., Networks, Data Security, Application Security, and Identity & Access Management).
Knowledge of industry-wide standards (e.g., NIST, PCI-DSS, CIS, OWASP)
Understanding of technical security risks & controls and management of these, supported by experience.
Appreciation of cyber security across traditional systems, cloud hosting and other third-party providers.
Ability to build & maintain relationships within the team and across other Group security functions.


In return, you'll get:

The stretch and opportunity to learn new technologies within a well-funded organisation and take your next step up the career ladder into bigger and more complex roles. You will also enjoy a diverse, energising, and informal environment that focuses on teamwork and providing equal opportunity with working patterns beyond the standard 9-5. Generous salary plus bonus Private Healthcare and well being Flexible benefits scheme30 Days holiday plus 8 Bank HolidaysPlenty of training opportunities and career progression including Hackathons! We're dedicated to giving you opportunities and support to develop you both expertly and personally to optimise your potential. As a new colleague, you'll join us on our journey to build a 21st century bank that reflects modern Britain, and craft an inclusive culture where all colleagues feel encouraged and valued. If this opportunity sounds like a great match we'd love to hear from you where together we make it possible. Additional Information: £61,911 - £75,000 - The salary advertised is for Manchester, if you're applying to work in one of our regional hubs the weighting will vary. Hybrid working adopted across the group with a requirement of 2 working days out of every 5 to be in a regional hub office.

Quick response
Required Knowledge
  • K0001   Knowledge of computer networking concepts and protocols, and network security methodologies.
  • K0002   Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
  • K0004   Knowledge of cybersecurity and privacy principles.
  • K0005   Knowledge of cyber threats an`d vulnerabilities.
  • K0021   Knowledge of data backup and recovery.
  • K0033   Knowledge of host/network access control mechanisms (e.g., access control list, capabilities lists).
  • K0046   Knowledge of intrusion detection methodologies and techniques for detecting host and network-based intrusions.
  • K0061   Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
  • K0179   Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
  • K0180   Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.
  • K0260   Knowledge of Personally Identifiable Information (PII) data security standards.
  • K0261   Knowledge of Payment Card Industry (PCI) data security standards.
  • K0332   Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
  • K0622   Knowledge of controls related to the use, processing, storage, and transmission of data.
  • K0285   Knowledge of implementing enterprise key escrow systems to support data-at-rest encryption.
Required Skills
  • S0059   Skill in using Virtual Private Network (VPN) devices and encryption.
Required Abilities
  • A0128  Ability to apply techniques for detecting host and network-based intrusions using intrusion detection technologies.
  • A0163  Ability to interpret Communications Security (COMSEC) terminology, guidelines and procedures.
  • A0165  Ability to manage Communications Security (COMSEC) material accounting, control and use procedure.
  • A0166  Ability to identify types of Communications Security (COMSEC) Incidents and how they’re reported.