Rothesay is the UK’s largest pensions insurancespecialist, purpose-built to protect pension schemes and theirmembers’ pensions. With over £68 billion of assets undermanagement, we secure the pensions of more than one million peopleand pay out, on average, approximately £200 million in pensionpayments each month. Rothesay is dedicated to providing excellencein customer service alongside prudent underwriting, a conservativeinvestment strategy and the careful management of risk. We aretrusted by the pension schemes of some of the UK’s best knowncompanies to provide pension solutions, including British Airways,Cadbury, the Civil Aviation Authority, the Co-Operative, Morrisons,Smiths Industries and Telent. At Rothesay, we are striving totransform our industry. We believe deeply in creating real securityfor the future and our leadership in finding new and better ways todo that is the key to our success. To do that, we need the verybrightest original thinkers to bring creativity as well as rigour.Rothesay is a rewarding place to work, where quality people canthrive and prosper. We pride ourselves on the connections ourpeople build, many of whom have been with us for over ten years.Job title: Senior Security Engineer Contract: Permanent Withsignificant executive support and sponsorship, Rothesay haslaunched a multi-year project to redevelop and modernize the fulltechnology and security stack. To support this and maintain ourrisk exposure, we are making a significant investment in ourInformation Security team, processes, and technology. This is achance to join a small tight-knit Security Engineering team at anexciting time where we are designing and building the core serviceswhich will allow Rothesay to continue operating securely as wescale and enhance. If you like working on designs for high scale,leading-edge, and operating in a truly cloud-native fashion, thenwe want to hear from you! Responsibilities: - You will be part ofthe Security Engineering team - helping design, implement andsupport key services within Rothesay. - We’re a hands-onengineering team. We partner with the broader engineeringorganisation and also build and support our own capabilities acrossIT Security, IAM, SDLC, and Security Architecture practices. -Strong hands-on experience working with major cloud solutions(IaaS, PaaS, Event-driven / Serverless, SaaS) AWS and/or Azure. -Capable of designing, implementing, and maintaining robustsolutions and re-usable patterns that reduce risk across theorganisation. - Develop policy as code, templates, and modules toimplement and enforce secure patterns and guidance. - Working withInfrastructure as Code, Containers, and CI/CD concepts. - Clearlyarticulate and communicate the value of a security control vs thefriction it may introduce – a credible peer within engineering. -An interest in threat modelling as a medium to demonstrate theimpact of security and robust Security Architecture’s forprotecting organisations. Skills & Experience Required: - 5+years of relevant technical experience as a Security Engineer orSoftware Engineer - Strong cloud and cloud native experience. -Strong communication skills. Ability to communicate at all levelswith both technical and executive stakeholders. - A high-levelunderstanding of security principles, control frameworks (NISTpreferred), and security risks as they apply to cloud solutions. -A good understanding of the latest security threats, threat actors,and the tactics and techniques adopted. - Possess a degree from aleading university in a relevant subject and/or have relevantindustry qualifications such as CISSP/CISM, and/or OSCP/PNPT -Experience in financial services, risk management, pensions, orinsurance - Dedication to role: Motivated to provide an effectivesupport service across all facets of role - Team Player:Demonstrates evidence of being a strong team player, collaborateswell with others and encourages other team members - Communication:Ability to communicate what is relevant and important in a clear,constructive and concise manner - Organised: Ability to work underpressure and prioritise workload in a fast paced environment.Ability to work autonomously with limited supervision - Creativeand innovative: Looks for ways to improve current processes andhelp develop creative solutions that have practical value for theteam - Judgement and Problem Solving: Proactive, sees the bigpicture and willing to be flexible to solve issues as they ariseDisclaimer This position description is intended to describe theduties most frequently performed by an individual in this position.It is not intended to be a complete list of assigned duties, but todescribe a position level. The role shall be performed within aprofessional office environment. Rothesay Life has health andsafety policies that are available for all workers upon request.There are no specific health risks associated with the role.Inclusion Rothesay actively promotes diversity and inclusivity. Weknow that our success depends on our people and that by nurturing aculture that values difference, we create a stronger, more dynamicbusiness. We welcome applications from all qualified candidates,regardless of race, colour, religion, gender, gender identity orexpression, sexual orientation, national origin, genetics,disability or age. Apply for this job * indicates a required field#J-18808-Ljbffr
