Skip to main content

Senior Cloud Security Analyst

Excited to grow your career?

Our purpose is to empower people to save and invest with confidence. We are looking for great people to join us, so please come and invest in YOUR future at HL.

We know that sometimes people can be put off applying for a job if they don't tick every box. If you're excited about working for us and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you!

About the role

Hargreaves Lansdown (HL) are now recruiting for a Senior Cloud Security Analyst to join the team. The Senior Cloud Security Analyst is a specialist role with the primary focus on Cloud Security Governance, Risk & Compliance. You will be supporting the Information Security function to ensure HL remains effective in protecting critical information assets within risk appetite.

What you'll be doing

  • Leading the technical aspects of cloud security risk and controls by overseeing and conducting, as necessary, Cloud Compliance assessments for AWS and Azure risk assessments.
  • Assisting the Senior Information Security Team in ensuring HL's Information Security Management System remains effective in protecting HL critical information assets within risk appetite.
  • Conducting analysis of cloud-based assets pertaining to information security incidents, audits, and testing while adhering to best practices.
  • Leading in the identification and reporting of remediation and mitigation activities related to cloud security findings across multiple cloud platforms (AWS and Azure).
  • Identifying gaps in cloud security posture and prioritise remediation efforts.
  • Approve within delegated limits risk assessments and 3rd party due diligence assessments that have been carried out by analysts and apprentices and provide guidance where needed.
  • Building relationships across multiple business functions, locations, and technical stakeholders to accomplish goals. You will help deliver the strategy by emphasising the importance of AWS Well Architected Framework, Shared responsibility model and good cloud governance.

About you

  • Previous experience in Information Security, with demonstrable experience of cloud security risks and controls in a DevSecOps cloud context.
  • Strong knowledge of common web technologies, cloud technologies, enterprise, and network architecture.
  • Experience in a regulated environment.
  • Certified to advanced security standards, for example CISSP, CCSP, CCSK, CRISC.
  • Practical work-based experience across the areas of security policy, culture, audit, and risk management.
  • Good exposure to and experience of carrying out security reviews against recognised security control frameworks such as ISO27017/27001, NIST CSF, or PCI-DSS.
  • Ability to evaluate the adequacy of cloud security controls, and how they are applied in a business context. Familiarity and use of some of the following tools is a must: AWS Audit Manager, AWS Security Hub, Macie, Wiz, Microsoft Compliance Portal/Purview, Azure Information Protection (AIP), Azure Security Centre.
  • Experience of carrying out security reviews against recognised security control frameworks such as NIST CSF.
  • Effective interpersonal skills to engage and collaborate with multiple internal and external stakeholders.

Interview process

The interview process for this role will be a 2 stage interview including a task.

Working Schedule

This role is based in Bristol head office, BS1 5HL. This role is permanent, full time, 37.5 hours per week, Monday to Friday. We have returned to the office, however for this role we offer a hybrid flexible working pattern to enable you the option of working from home and coming into the office.

Why us?

Here at HL, we're the UK's number 1 investment platform for private investors, based in Bristol. For more than 40 years we've helped investors save time, tax and money on their investments.

To achieve our mission, we believe we have a workplace like no other, with constant learning, dynamic teams, and a great ethos. We're steered by core values that promote service, quality, innovation, and opportunity in everything we do.

What's on offer?

  • Discretionary annual bonus* & annual pay review
  • 25 days* holiday plus bank holidays and 1-day additional Christmas closure time
  • Option to purchase an additional 5 days holiday per year at annual enrolment
  • Flexible working options available, including hybrid working
  • Enhanced parental leave
  • Pension scheme up to 11% employer contribution
  • Sharesave scheme - have a real stake in HL's future
  • Income Protection & Life insurance (4 x salary core level of cover)
  • Private medical insurance*
  • Health care cash plans - including optical, dental, and out patientcare
  • Help@hand and an Employee Assistance Programme
  • Gympass - gym memberships and wellbeing apps available
  • Variety of travel to work schemes with free bike storage and shower facilities
  • An inhouse barista serving subsidised coffee and snacks
  • Join HL's sports, I&D networks and volunteering groups (two paid volunteering days per year)
  • LifeWorks Discounts on services, restaurants and retailers

* dependant on role level

Hargreaves Lansdown is an inclusive employer that values diversity in its workforce. We encourage applications from all individuals without regard to race, religion, gender, sexual orientation, national origin, disability or age.

This role may also be available on a flexible working or part time basis - please ask the Recruitment & Onboarding team for more information.

Please note, we are unable to provide employment sponsorship to candidates.

Senior Cloud Security Analyst

Hargreaves Lansdown
Bristol, UK
Full-Time
no work experience required
Bachelor

Published on 15/04/2024

Search more jobs

Share this job now