Nationwide is the world’s largest building society and it’s an exciting time to join us.
We are looking for a Security and Resilience Consultant to work in our Security Consultancy team. This role sits within our Security & Resilience function where our stated mission is to ensure that, ‘with our colleagues, we make sure services, money and data are available and secure at all times’.
We are happy to consider flexible working approaches to help you perform at your best.
At Nationwide we offer hybrid working wherever possible. More rewarding relationships are supported through our hybrid approach, bringing colleagues together across our UK wide estate, whilst also supporting generous access to home working. We value our time in the office to solve problems, to learn, and to feel connected.
For this job you’ll be located at our nearest regional hub. There will be a need to regularly connect with colleagues for collaboration events in one of our office sites. This is anticipated to be monthly in Swindon. If your application is successful, your hiring manager will provide further details on how this works. You can also find out more about our approach to hybrid working here.
If we receive a high volume of relevant applications, we may close the advert earlier than the advertised date, so please apply as soon as you can.

WHAT YOU’LL BE DOING

As a Security Consultant you will be accountable for ensuring that services and change initiatives in the business areas you are aligned to are delivered in a secure and compliant manner. You’ll be working in a matrix manner with our business, change and delivery teams, supporting everything from small technology changes to major transformation programmes, driving implementation of our Security and Resilience strategies and policies in a positive and pragmatic manner which enables our colleagues to deliver their business objectives. To do this, you will be:

• Conducting security risk assessments and providing recommendations on appropriate controls to ensure services and systems operate within risk appetite.
• Assessing the impact of change initiatives and issuing appropriate security requirements to ensure compliance with security policy and standards.
• Advising on the implementation of security control requirements, ensuring the design and approach of these both achieve the desired security outcome and are operationally viable.
• Supporting change initiatives in navigating and utilising our central security services, including security monitoring, penetration testing and access management.
• Assuring that security control requirements are met, in conjunction with our Application Security Testing team, through the project lifecycle.
• Acting as the initial point of contact for all security and resilience related questions, queries, challenges and escalations for your aligned areas.

You will need to build strong relationships with colleagues across multiple areas, working collaboratively and proactively, to ensure Security & Resilience is effectively embedded in all projects and programmes.

Our customer first behaviours put customers and members at the heart of how we work together. They are the set of behaviours that every colleague needs to display, in every role:

• Feel what customers feel - We step into our customers’ shoes, using their feedback and insights to empathise with them and to understand their needs, so that every decision we make starts and finishes with our customers in mind
• Say it straight - We are brave in speaking out and saying what we think – we’re honest and direct with good intent, openly sharing diverse perspectives to reach the best conclusions and using language everyone can understand
• Push for better - We don’t settle for mediocrity, we challenge the status quo, taking responsibility for continuous improvement and personal development
• Get it done - We prioritise what will have the greatest impact, we are decisive, and we take accountability for delivering brilliant customer outcomes