Browser Not Supported

We no longer support Internet Explorer 11 as a browser.
Please download a more secure modern browser below.

Savings
Personal Savings Fixed Rate Bonds Cash ISAs
Savings FAQs Existing Customers Online Banking Account maturity What to do when someone passes away Business & Non Personal Savings
Mortgages
Our Products RIO Mortgage 50+ Residential Mortgages Professional Mortgages Equity Release Holiday Let Mortgages
Mortgages Support Changes to your Mortgage Coming to the end of your deal? Energy efficiency
Product Support Savings Mortgages Online banking
Further support Dealing with difficult times hub What to do when someone passes away Power of Attorney
Security and Privacy Privacy Scams and fraud hub Take Five to Stop Fraud
Jobs At Hodge
Closing Date:
3rd of June 2024
Salary:
Up to £92,000
Contract Details:
Permanent
Working Hours:
35
Apply Now

Do you want to be part of a force for good, helping to make life better for customers & society in the moments that matter? At Hodge, we put people at the heart of our business and that means our customers, colleagues and communities. Hodge is a Welsh financial service provider that focus on commercial lending, and specialist residential mortgage markets.

Under the overall management of the Head of Engineering, provide Cyber Security
architecture and guidance to ensure that all internal and external applications, infrastructure and data are managed in line with cyber and information security best practice. Manage the Cyber Security engagement and activity across Hodge to ensure that new and amended services are built and maintain the appropriate level of control.

Essential Experience:

  • Demonstrable experience in Cyber or Information Security Role
  • Knowledge of best practice and supporting tools to implement Cyber controls.
  • Expert knowledge in IT security best practice and solutions.
  • Ability to demonstrate understanding of vulnerability remediation

Responsibilities:

  • Define and implement Cyber Security roadmap and architecture aligned to Hodge architectural vision, software development, Cloud/Infrastructure delivery and business requirements.
  • Work with business and IT stakeholders to ensure security provision and tools align with short and longer-term goals.
  • Work with software and delivery teams to define, manage and implement security requirements across development and infrastructure projects.
  • Engage with software teams to ensure that security considerations and controls are embedded into all stages of software development and delivery.
  • In conjunction with Information Security team, design and implement a security awareness programme for Hodge colleagues.
  • Engage with external suppliers to utilise external expertise where required across
    delivery and live operation.
  • Understand core architectural patterns and frameworks used by Hodge.
  • Develop and implement threat modelling and risk analysis framework.
  • Define security standards to be applied to all work undertaken (e.g. password policy, authentication standards)
  • Experience of conducting and working with 3rd party suppliers to conduct penetration
    tests
  • Work with delivery teams to ensure relevant NFRs (authentication, confidentiality,
    integrity, etc.) are defined, agreed, tested and implemented.

Cyber Security Operation:

  • Provide mentoring to the Cyber Security Operations Team.
  • Where required, aid the design of frameworks and policies related to Hodge Cyber Security Operation, for example assurance of outsourced security providers.
  • Provide input to the continued development of Security Controls Catalogue to ensure
    best practice and consistent reporting of risks and controls

Continuous Improvement:

  • Advise and coach other team members to aid their technical and team development.
  • Pro-actively investigate technology landscape and best practice to identify improvements.
  • Maintain a knowledge of current Cyber technologies and best practice to identify improvements

Please be aware that should we pursue your application, all our Financial Services employees will be expected to complete background checks to assess suitability for employment, these include; a criminal record, identity, sanctions, adverse finance, fraud prevention and reference checks to comply with our regulatory requirements.

Hodge is an advocate of being an equal opportunities employer, We believe in promoting equality and diversity which is central to our lives today. We welcome applications from all sections of the community and recognises the value a diverse workforce brings to an organisation.

ESG and sustainability are at the heart of everything we do and serves as a reminder of the responsibility we have to our stakeholders, customers, colleagues and the communities we operate in to use our position wisely. We’re currently exploring different certifications available and have done an initial review of how we think we’d fare, as we see this as a real opportunity for Hodge given our social purpose.