Information Security Consultant

Get AI-powered advice on this job and more exclusive features.

This range is provided by Impellam Group. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

Base pay range

Direct message the job poster from Impellam Group

Sourcing Consultant at Lorien: Empowering Businesses with Strategic Procurement Solutions

Role – Information Security Consultant

Opening for – ERP Consultants, Assurance Consultants.

Location – London & Manchester

Office based Hybrid or Remote – Hybrid (will be required onsite 2-3 Days a week)

Main Responsibilities

Role specific

We are seeking a versatile and proactive Information Security Consultant to join Handelsbanken UK which is currently undergoing a major technology transformation programme. The successful candidate will be embedded within a technology delivery team, playing a critical role in ensuring that security is integrated seamlessly into change initiatives from inception through delivery.

The Bank operates an model where information security consultants are embedded into workstreams acting as the security lead for that delivery team. This is not a traditional advisory role — you will be actively participating in solving information security problems, working closely with engineers, product managers, and business stakeholders to identify, assess, and collaboratively solve security challenges and ensure the team can continue to deliver a pace.

This is a unique opportunity to work on an exciting technology change programme, influencing the security posture of critical Bank systems while collaborating closely with engineers, product managers, and business stakeholders. You’ll often operate independently of other security and privacy subject matter experts, so a broad and deep understanding of security and privacy domains is essential — from secure architecture and threat modelling to data protection and regulatory compliance

If you thrive on autonomy, love solving complex problems, and want to see the real-world impact of your work in a critical industry — this is the role for you.

Key Responsibilities:

• Problem Solving - You will develop a deep knowledge of your workstreams technology stack and business outcomes allowing you to not only identify security risks but identify and propose practical solutions to the team. This role is all about helping teams deliver securely not just calling out risks.
• Risk and Control Assessments ��� You will lead risk & control assessments using the Banks defined processes, covering supplier due diligence, privacy impact assessments and project security.
• Risk Management – You will support your workstream identify and articulate risks, steering them towards appropriate treatment plans, documenting mitigating controls and ensuring these are actions within agreed timeframes. You will operate in line with the Bank's Risk Management framework (including sub-frameworks) and relevant risk and compliance policies and procedures, ensuring appropriate and timely escalation of any concerns to your line manager.
• Advisory – You will provide specialist advice and interpretation of Information Security best practice and UK regulatory requirements to a range of different stakeholders as new products, processes and systems are developed. You will need to be aware of your own knowledge gaps and when & where to seek specialist input to solve a particular problem or query
• Subject Matter Expertise – You will develop a deep knowledge of the Banks secure change processes and procedures, shepherding your workstream through various assessments and approval gates
• Relationship Management – You will build deep, trust based relationships with key stakeholders within your delivery team such as developers, testers, product managers, delivery leads and tech leads. You will be an active member of the delivery team, attending daily stand-ups, PI planning sessions and working groups.

You could be a good fit for this role if…

• You are a skilled communicator, able to convey complex security issues to a wide audience, including non-technical colleagues.
• You love building strong interpersonal relationships across engineering, product, compliance, and business teams to foster a culture of shared security ownership.
• You are great at identifying information security risks and you enjoy finding creative solutions problems.
• You have a wide range of information security knowledge and, crucially, you are aware of your own knowledge gaps and able to seek support and guidance as required.
• You understand the intersection of Risk Management and Information Security and how these relate to each other in a Financial Service business (3LoD model)

Professional Qualifications

The successful applicant will have a solid understanding of Information Security best practice and regulatory requirements, and ideally will have good practical experience in privacy as well. They will also ideally:

• hold or have the capability to attain appropriate external qualifications, such as Certified Information Systems Security Professional (CISSP).

Must Haves:

• Information Security - Solid, practical and demonstrable experience of information security (technical and non technical aspects)
• Privacy – You don’t need to be a privacy expert but you will require a good understanding of core privacy concepts and how these apply to technology change initiatives
• Technology Change – Demonstrable experience of supporting technology change initiatives to deliver solutions securely

Nice to Haves:

• Financial Services - Experience working in FS or other highly regulate industry
• Intra-Group – Experience working in a intra-group outsourcing arrangement
• Technology Transformation - Experience working on large-scale technology transformation programmes

Seniority level

• Seniority levelMid-Senior level

Employment type

• Employment typeContract

Job function

• Job functionInformation Technology
• IndustriesBanking

Referrals increase your chances of interviewing at Impellam Group by 2x

Sign in to set job alerts for “Information Security Consultant” roles.

London, England, United Kingdom 1 week ago

London, England, United Kingdom 4 days ago

London, England, United Kingdom £60,000.00-£80,000.00 1 month ago

London, England, United Kingdom 1 month ago

Security Consultant (Hybrid, UK - 1 day per week with possible to increase)

London, England, United Kingdom 1 month ago

London Area, United Kingdom £35,000.00-£45,000.00 23 hours ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 1 week ago

Information Security Analyst - Audit, Compliance & Cybersecurity

London, England, United Kingdom 18 hours ago

Information Security Consultant (3rd party security assurance)

London, England, United Kingdom 2 weeks ago

Information Security Consultant – Privacy Specialist (Contract)

London, England, United Kingdom 1 week ago

Birmingham, England, United Kingdom 4 days ago

Information Security Manager: Governance, Risk and Compliance (GRC)Cyber Security Consultant – GRC Risk AdvisoryInformation Security Analyst - Audit, Compliance & Cybersecurity

London, England, United Kingdom 1 week ago

Information Security Analyst - Audit, Compliance & Cybersecurity

London, England, United Kingdom 1 month ago

London, England, United Kingdom 3 months ago

Senior Cyber Security Risk Manager - Information Security

London, England, United Kingdom 6 days ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr