The team will deliver Access Management and Cryptographic Services for key services such as our Authorisations, Mobile Gateway and Clearing and Settlement services.
Delivery of Access Management services across the Production and Corporate estate in conjunction with Corporate IT.
Delivery and administration of recertification and compliance programmes that meet the departmental goals.
Delivery of Cryptographic Key Management services with ITS Technologies team for the business and production services. Typically these activities will include Key Management Ceremonies and cryptographic token management.
Participate in project engagement process and perform delegated Operational Acceptance process tasks to ensure that all projects delivered meet our Operational and Compliance requirements.
Develop the Access Management and Cryptographic service strategy to improve service controls, service delivery and cost.
Develop and maintain the IT Security Standards in relation to the assigned services to ensure that they meet the Corporate Key Control requirements.
Operate the Corporate Key Controls Exceptions process as non Compliance is established via the operation of the framework.
Participate in the regular Security Resource Board framework to establish project effort and resource allocation.
Demonstrable experience relating to service, change and problem management and governance, such as ITIL incident and change management, Prince, Patch Management, Data Centre Operations processes, PCI DSS, SAS70 and COBIT and COSO based controls.
Experience across a wide variety of technology disciplines and deep understanding of Networks, HSMs, Key Ceremonies, Cisco devices, Microsoft Windows, Solaris and AIX.
Good understanding of middleware and application server products.
Familiar with Security Industry standard methods, and security practices CIA, AAA etc