Who we are :
We are a leading provider of equity compensation management solutions, offering stock plan administration software, expert support services and integrated financial reporting tools to corporate clients and their employees worldwide.
Hundreds of companies, from startups to large enterprises, are choosing this Global Shares solutions and software over traditional solutions.
What we value :
People -We care about our people. We treat our people with respect. We embrace diversity and inclusion. We build open and honest relationships, collaborating across boundaries to meet our clients’ needs.
Bravery -We dare to do things diﬀerently. We provide best service and technology through innovation, creativity and high performance.
We challenge the norm, we challenge ourselves and we challenge complexity with simplicity.
Global -We are one global network. We are champions of employee ownership. We work together, incorporating clients and partners as an extension of our team.
We foster a global and diverse community, where our people are united through ambition, commitment and shared goals. We are in this journey together.
Integrity -We are committed to professional integrity We conduct our business to the highest standards with skill, diligence and responsibility.
Professional trust, honesty and compliance are at the core of our culture
Service- We are client focused. We strive to provide our best service, to drive great client experience through teamwork and high performance.
Why we need you :
We are looking for an ambitious and experienced security expert capable of taking responsibility for our digital security and understand the Risk Acceptance profile of a large Financial entity.
We need to ensure internal and external awareness of all aspects of cyber security and are looking for someone to support our organisation on all things security.
What you will do :
Develop, maintain and enforce key security policies.
Maintain and improve infrastructure and tools in place to ensure highest security standards
Ensure Cyber Security Risk Register is always up to date, accurate, exhaustive and concise
Build, maintain and drive implementation of world class Cyber Security Roadmap
Work closely with compliance department to ensure we meet necessary regulatory obligations
Assist in the completion of security questionnaires
Manage and lead Security Audits and Assurance Visits (GDPR, Cyber Security)
Assist presales with the security part of RFIs / RFQs / RFPs
Work with third party penetration testing organisation to complete annual penetration tests
Working in the role of Product Owner for a Scrum team to deliver best-in-class security for web / mobile applications
Provide training to IT teams and wider company on security best practices
Update SSAE16 controls from IT standpoint and work with auditors during annual review
Assess, advise and help implement appropriate information security frameworks (ISO 27001 / 2, SOC 2, NIST, ISF)
Ensure Global Shares follows data protection best practices and are GDPR compliant
Set up and review automated Infrastructure security scans and ensure vulnerabilities are addressed in a timely manner
Perform security due diligence on third party vendors
Advise and assist development teams regarding security best practices. This will be aided by Static Application Security Testing (SAST) tools and penetration testing results
Develop and maintain Security training programmes (e.g. Phishing awareness), including follow up testing, with assistance from with Learning & Development department
Identify security gaps or weaknesses and provide recommendations on how these can be resolved
Review and / or perform Proof of Concept of Cyber Security tools / solutions and make recommendations based on best practice, risk, price, etc.
For example SAST, DAST, SIEM,
Develop and roll out Application Security Training for Delivery Team (Devs + QA)
What you have :
Passion of IT and security in particular
Degree in computer science, mathematics or a related technical field (or equivalent by experience)
A minimum of four years experience in the field of cyber security
A very strong knowledge of the current cyber security landscape
Experience within the Financial Services sector and knowledge of recent legislation pertaining to it
Nice To Have :
Knowledge of Azure Hosting
Knowledge of the Microsoft SDL
Experience in software delivery using a Agile Scrum methodology is an advantage
Experience with software development tools would be advantageous
Knowledge of OWASP coding standards
Experience is managing Intrusion Detection Systems (IDS) automated scanning
Knowledge / Experience in Security Information and Event Management ( SIEM ) technologies
Knowledge / Experience in Office 365 security and compliance features
Knowledge / Experience of the OWASP Application Security Verification Standard (ASVS) Project
Passive knowledge of MS.Net (ie can read & understand the code)
What we offer :
Opportunity to be part of something special, Global Shares is growing fast, and we want you to be part of our journey
Employee Assistance Programme
Bike to work scheme
Active Social Club with events throughout the year
Casual dress code
Fully subsidised CEP exams
Opportunity to travel and work in our global offices if desired
What our Interview Process is like :
Step 1 - After you apply, a recruiter may reach out to you for an introductory call
Step 2 - If your background is match for the role, you may be required to complete a technical assessment (role depended) and / or phone interview with 1-2 people
Step 3- If you continue through the process, you will come onsite 1-2 times to interview
We are committed to an inclusive and diverse Global Shares. Global Shares is an equal opportunity employer.
Want to see more? Have a look at what life is like in Global Shares in our video linked on our career’s page