Company Description
SBS is a global financial technology company that’s helping banks and the financial services industry to reimagine how to operate in an increasingly digital world. SBS is a trusted partner of more than 1,500 financial institutions and large-scale lenders in 80 countries worldwide, including Santander, Societé Generale, KCB Bank, Kensington Mortgages, Mercedes-Benz, and Toyota. Its cloud platform offers clients a composable architecture to digitize operations, ranging from banking, lending, compliance, to payments, and consumer and asset finance. With 5,000 employees in 50 offices, SBS is recognized as a Top 10 European Fintech company by IDC and as a leader in Omdia’s Universe: Digital Banking Platforms. SBS is a subsidiary of European digital consulting leader Sopra Steria (EPA: SOP), a 56,000-person company that generates annual revenue of €5.8 billion in 2023.
Job Description
️ Location: Bristol or Sheffield
Salary: £55,000-£70,000 DOE
Contract type: Full-time & permanent
Hybrid, office 2 days per week

We are on the lookout for an experienced Cloud Information Security Officer to help drive forward our commitment to providing a world-class information security management system for our products and services that protects both Sopra Banking Software and our customers’ interests. This role will report to the Security, Risk and Compliance Lead.

• Proactively monitor for, identify, respond to, and resolve security incidents
• Align information security strategy with business goals and objectives.
• Ensure compliance with relevant local and international laws, as well as internal policies.
• Foster a culture of information security awareness and continuous improvement.
• Drive the adoption of best practices in data protection and cybersecurity.
• Maintain a strong relationship with internal teams and our customers by demonstrating an understanding of, and by executing best practices within information security.
• Update and maintain Information Security Policies, procedures and supporting operational collateral.
• Manage internal and external audit events (e.g., SOC1, ISO 27001) and information security requests from customers to demonstrate compliance with industry best practices and customer contractual obligations.
• Remain up to date with the latest threats and vulnerabilities to ensure operational tools and processes are in place and up to date.
• Participate in the identification, assessment, registration, and treatment of information security risks.

QUALIFICATIONS

• Minimum of 3 years of experience working in an information security role, or an information security-related qualification.
• Experience working in and securing cloud environments (AWS preferred)
• Excellent working knowledge of common security tools and platforms.
• Familiarity with GDPR, ISO 27001 and other relevant information security laws and standards.
• Excellent written and verbal communication skills, with the ability to convey complex information.
• A very strong understanding of information security concepts and best practices.
• Capable of managing emerging information security risks and how these can be mitigated.
  Additional Information

We’re committed to supporting our employees in every aspect of their lives, from health and wellbeing to financial security and lifestyle perks. Here’s a snapshot of the benefits you’ll enjoy as part of our team:

• Competitive salary: £55,000-£70,000 DOE
• Health & Wellbeing: Private Medical Insurance, Health Cash Plan, Dental Insurance, Eye Care Vouchers, Flu Vaccinations
• Finance & Protection: Life Assurance, Critical Illness Cover, Pension Plan, Long Service Awards, Payroll Giving, Fleet car provider
• Leisure & Lifestyle: Cycle to Work Scheme, Holiday Trading, Travel Insurance

At our organization, we are committed to fighting against all forms of discrimination. We foster a work environment that is inclusive and respectful of all differences.
All of our positions are open to people with disabilities

• Proactively monitor for, identify, respond to, and resolve security incidents
• Align information security strategy with business goals and objectives.
• Ensure compliance with relevant local and international laws, as well as internal policies.
• Foster a culture of information security awareness and continuous improvement.
• Drive the adoption of best practices in data protection and cybersecurity.
• Maintain a strong relationship with internal teams and our customers by demonstrating an understanding of, and by executing best practices within information security.
• Update and maintain Information Security Policies, procedures and supporting operational collateral.
• Manage internal and external audit events (e.g., SOC1, ISO 27001) and information security requests from customers to demonstrate compliance with industry best practices and customer contractual obligations.
• Remain up to date with the latest threats and vulnerabilities to ensure operational tools and processes are in place and up to date.
• Participate in the identification, assessment, registration, and treatment of information security risks