IT Security Operations Specialist
Indexed description
The team
The IT Security Operations Specialist is part of the P&H IT Security team responsible for protecting the bank's information assets, systems, and services. The role works closely with global security, engineering, and risk teams to support security monitoring, incident response, access management, vulnerability remediation, and security governance activities. The team promotes a collaborative and security-first culture focused on safeguarding customer trust, enhancing cyber resilience, and ensuring compliance with security standards and regulatory requirements. Key initiatives include security operations, identity and access management, vulnerability management, security awareness, and continuous improvement of the bank's overall security posture.
Roles and responsibilities
We expect you to lead and deliver security engineering initiatives, by translating policy and risk requirements into concrete technical implementations. You will collaborate across different teams and stakeholders to operationalize security practices across whole organization.
- Identify, shape, and drive security initiatives that improve the security posture of the organization, translating strategy and risk insights into concrete, implementable solutions.
- Own security projects end-to-end: from problem definition and solution design to stakeholder alignment, implementation, and operational handover.
- Collaborate closely with DevOps teams, product owners, and your peers in the community to embed security controls into engineering practices.
- Contribute hands-on to security engineering activities such as vulnerability management, security hardening, security event monitoring, penetration testing, static/dynamic application security testing and firewall rule reviews.
- Translate security standards, policies, and regulatory requirements into pragmatic technical implementations.
- Monitor progress, manage dependencies, and remove blockers to ensure timely and effective delivery of security initiatives.
- Contribute to local and global security initiatives, including minimum standards and regulatory-driven programs.
- Strong sense of ownership and ability to independently drive initiatives from idea to implementation.
- Ability to bring structure to complex security topics and translate them into actionable plans.
- Combination of security engineering expertise and delivery / coordination skills.
- Understanding of modern engineering environments and ability to support DevOps teams pragmatically.
- Comfortable challenging the status quo and asking “why”.
- Experience or strong interest in security project or program delivery, automation, and process improvement.
- Nice to have: Security certifications (e.g. CISSP, CISM, CRISC, CISA) or equivalent experience are appreciated.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search