Browser Not Supported

We no longer support Internet Explorer 11 as a browser.
Please download a more secure modern browser below.

Jobs At Hodge
Closing Date:
3rd of June 2024
Up to £92,000
Contract Details:
Working Hours:

Do you want to be part of a force for good, helping to make life better for customers & society in the moments that matter? At Hodge, we put people at the heart of our business and that means our customers, colleagues and communities. Hodge is a Welsh financial service provider that focus on commercial lending, and specialist residential mortgage markets.

Under the overall management of the Head of Engineering, provide Cyber Security
architecture and guidance to ensure that all internal and external applications, infrastructure and data are managed in line with cyber and information security best practice. Manage the Cyber Security engagement and activity across Hodge to ensure that new and amended services are built and maintain the appropriate level of control.

Essential Experience:

  • Demonstrable experience in Cyber or Information Security Role
  • Knowledge of best practice and supporting tools to implement Cyber controls.
  • Expert knowledge in IT security best practice and solutions.
  • Ability to demonstrate understanding of vulnerability remediation


  • Define and implement Cyber Security roadmap and architecture aligned to Hodge architectural vision, software development, Cloud/Infrastructure delivery and business requirements.
  • Work with business and IT stakeholders to ensure security provision and tools align with short and longer-term goals.
  • Work with software and delivery teams to define, manage and implement security requirements across development and infrastructure projects.
  • Engage with software teams to ensure that security considerations and controls are embedded into all stages of software development and delivery.
  • In conjunction with Information Security team, design and implement a security awareness programme for Hodge colleagues.
  • Engage with external suppliers to utilise external expertise where required across
    delivery and live operation.
  • Understand core architectural patterns and frameworks used by Hodge.
  • Develop and implement threat modelling and risk analysis framework.
  • Define security standards to be applied to all work undertaken (e.g. password policy, authentication standards)
  • Experience of conducting and working with 3rd party suppliers to conduct penetration
  • Work with delivery teams to ensure relevant NFRs (authentication, confidentiality,
    integrity, etc.) are defined, agreed, tested and implemented.

Cyber Security Operation:

  • Provide mentoring to the Cyber Security Operations Team.
  • Where required, aid the design of frameworks and policies related to Hodge Cyber Security Operation, for example assurance of outsourced security providers.
  • Provide input to the continued development of Security Controls Catalogue to ensure
    best practice and consistent reporting of risks and controls

Continuous Improvement:

  • Advise and coach other team members to aid their technical and team development.
  • Pro-actively investigate technology landscape and best practice to identify improvements.
  • Maintain a knowledge of current Cyber technologies and best practice to identify improvements

Please be aware that should we pursue your application, all our Financial Services employees will be expected to complete background checks to assess suitability for employment, these include; a criminal record, identity, sanctions, adverse finance, fraud prevention and reference checks to comply with our regulatory requirements.

Hodge is an advocate of being an equal opportunities employer, We believe in promoting equality and diversity which is central to our lives today. We welcome applications from all sections of the community and recognises the value a diverse workforce brings to an organisation.

ESG and sustainability are at the heart of everything we do and serves as a reminder of the responsibility we have to our stakeholders, customers, colleagues and the communities we operate in to use our position wisely. We’re currently exploring different certifications available and have done an initial review of how we think we’d fare, as we see this as a real opportunity for Hodge given our social purpose.