Description
Role Description
At FNZ, our purpose is to make wealth management more accessible, bringing easier, fairer and more inclusive solutions to people worldwide. Here in the Global Cyber & Information Security team, we are on a mission to embed cyber resilience across FNZ, protecting the platforms that support investment solutions for over 20 million people.
We are looking for a lead Penetration Tester, reporting within the Cyber Resilience and Operations function. You will be responsible for the creation and oversight of a new penetration security testing service that will provide greater coverage of security testing of our infrastructure, applications, mobile devices, cloud platforms and endpoints that support regulatory, client and threat led requirements. The service will use a mix of internal resource and 3rd parties.
You will be qualified as a penetration testing expert and will have security subject matter expertise, knowledge of the cybersecurity landscape, knowledge and experience following a variety of industry recognised information security frameworks, experience in interpreting and implementing client and regulatory requirements, coupled with an ability to communicate effectively to stakeholders of all levels. You will also have proven oversight and development of a small team of penetration testers and use of 3rd party testing services.
Specific Role Responsibilities
- Offer global vulnerability assessment and penetration testing services, detecting system weaknesses and making recommendations for mitigation.
- Design and perform penetration tests to simulate cyber-attacks with integration of threat incidents into penetration testing priorities.
- Documentation of findings including detailed reports on test results.
- Develop and engineer penetration testing services including automation scripts.
- Train colleagues on penetration testing techniques; providing oversight of penetration testing results.
- Maintain security testing operating procedures.
- Support in delivery of initiatives to mature security controls services processes.
- Support in the delivery of the Information Security strategy.
- Support in the creation delivery security reporting MI.
- Support in development delivery consistent global services that enable delivery business goals.
Experience Required
Primary requirements:
- Proven technical knowledge of web applications applications infrastructure components e.g., cloud platforms mobile devices networks infrastructure endpoints.
- Deep exploit vulnerability knowledge beyond automated approaches.
- Scripting coding skills.
- Strong operating system understanding understanding network protocols.
- Proven line management experience.
- Good knowledge practical implementation information security risk frameworks such as NIST CSF ISO27001 NIST 80053 COBIT good auditing frameworks such as ISAE3402 SOC2 experience developing managing formal security documents.
- Proven ability manage internal stakeholders through journey improving information security maturity.
- Good ability communicate information security risk concepts stakeholders all levels professional penetration testing qualifications such as CEH (v12) - Certified Ethical Hacker course.
About FNZ Culture
Our culture is what drives us; it's at the heart who we are everything we do; it's what inspires excites moves us forward; our ambition is create culture growth one opens up limitless opportunities employees customers wider world; at FNZ we know great impact only possible great teamwork that's why value strength diversity thought global team; The FNZ Way cornerstone what do comprised four values set standard how everyone interacts each other customers diverse stakeholders around world:
1) Customer obsessed long-term
2) Think big make impact
3) Act now own it all way
4) Challenge commit win together
Read more about The FNZ Way our values: www.fnz.com/culture
Opportunities
Right from day one you will work alongside exceptional multicultural teams experts their respective fields who inspire challenge you make your greatest impact; Be part highly successful rapidly growing global business leading delivery financial services via cloud computing partners some worlds largest companies working flexible agile way meets needs business personal circumstances; Remuneration significant financial rewards career advancement based individual contribution business impact rather than tenure seniority; We provide global career opportunities best employees any offices UK EU US Canada South Africa APAC.
Commitment to Equal Opportunities
At FNZ we recognise diversity equity inclusion important factors contributing success embrace unique perspective capabilities current future employees help continue drive innovation achieve business goals recruitment decisions made non-discriminatory manner without regard gender ethnicity/race faith age nationality gender identity sexual orientation marital status socio-economic background disability military veteran status where all applicants employees valued respected.In addition want ensure accessibility needs well supported if require specific support please advise us.
About FNZ
FNZ committed opening up wealth so everyone everywhere can invest their future terms know foundation do already exists wealth management industry complexity holds firms back created wealths growth platform help provide global end-to-end wealth management platform integrates modern technology with business investment operations regulated financial institution partner over 650 financial institutions 12 thousand wealth managers US$1.5 trillion assets under administration (AUA); Together customers help over 20 million people from all wealth segments invest their future.