Personnel Security Specialist handling background investigations and security document management for government personnel security processes. Ensuring compliance with operational security requirements in a mission - driven environment.
About the role
- CISO managing the information security program at Sokin, a B2B financial services provider. Leading strategy, compliance, and security operations across global operations.
Responsibilities
- Define and execute the enterprise information security strategy aligned with business objectives
- Establish and maintain the Information Security Management System (ISMS) to support constant certification readiness with PCI DSS, ISO 27001 and SOC2
- Own security policies, standards, and procedures across the organisation
- Report to the Board and senior leadership on security posture, risk exposure and programme maturity
- Manage security budget and resource allocation
- Lead enterprise security risk assessments and maintain the infosec item on the risk register
- Ensure compliance with FCA operational resilience requirements and SYSC guidelines
- Maintain PCI-DSS Level 1 compliance across payment processing infrastructure
- Oversee GDPR, UK Data Protection Act, and international privacy compliance
- Manage relationships with external auditors, penetration testers, and regulatory bodies
- Lead third-party vendor security assessments and due diligence
- Build and lead the Security Operations Centre (SOC) function
- Establish incident response capabilities and lead major security incident management
- Implement and manage SIEM, EDR, vulnerability management, and threat intelligence platforms
- Oversee identity and access management (IAM) strategy and privileged access management (PAM)
- Drive security monitoring and alerting across cloud and on-premise infrastructure
- Embed security into the SDLC through secure development practices and DevSecOps
- Lead application security programme including SAST, DAST, SCA, and code review processes
- Secure AWS cloud infrastructure using native and third-party security tooling
- Ensure secure API design and implementation for payment integrations
- Manage secrets management, encryption standards, and key management practices
- Own business continuity and disaster recovery planning from a security perspective
- Lead security aspects of operational resilience testing and scenario planning
- Ensure adequate backup, recovery, and failover capabilities for critical systems
- Build security awareness programme including phishing simulations and training
- Foster a security-conscious culture across engineering, product, and business teams
- Recruit, develop, and retain security talent
Requirements
- 10+ years in information security with 5+ years in senior security leadership roles
- Experience in regulated financial services (payments, banking, or fintech)
- Track record of building and leading security teams in scale-up environments
- Experience with FCA regulation, PCI-DSS compliance, and financial services audits
- Hands-on experience with security incident response and crisis management
- Deep knowledge of AWS security services (GuardDuty, Security Hub, WAF, KMS, CloudTrail, Config)
- Experience with containerised environments (EKS/Kubernetes) and serverless security
- Strong understanding of network security, zero trust architecture, and micro-segmentation
- Proficiency with SIEM platforms (Splunk, Datadog Security, or equivalent)
- Knowledge of application security tools: Wiz, SonarQube, Burp Suite, OWASP ZAP
- Experience with IAM solutions (Auth0, Azure AD) and PAM tools (CyberArk, ConductorOne, Hashicorp)
- Understanding of cryptographic standards, HSMs, and payment security (tokenisation, encryption)
- Familiarity with infrastructure-as-code security (Terraform, CloudFormation)
Benefits
- Competitive salary and equity participation
- Hybrid working with flexibility
- Private healthcare
- Pension contribution
- Professional development budget
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Personnel Security Specialist for FBI operations reviewing investigation documentation for accuracy and processing. Support background investigations and conduct security assessments for personnel qualifications.
Personnel Security Assistant providing customer service and administrative support for personnel security case processing. Reviewing forms, assisting applicants, and coordinating follow - ups based in Springfield, VA.
Personnel Security Specialist conducting intake tasks for DHS Federal Protective Service. Handling background investigations and managing security document processes for contractor applicants.
Security Police Officer supporting the protection of DOE property and assets with a focus on maintaining a secure environment. Observing incidents and preserving order at assigned client sites in Platteville, CO.
Security Officer responsible for maintaining order in casino facilities. Patrolling buildings, examining security measures, and responding to incidents as needed.
Field Service Engineer providing technical support and system upgrades in cybersecurity for customers. Collaborating within the Lifecycle Services team to enhance security and performance using advanced technologies.
Growth Manager at KOBIL managing the growth of AppShield mobile app security product. Leading strategic initiatives and global marketing efforts to enhance product positioning and market expansion.
Intern supporting the engineering team in developing safety concepts for high - voltage batteries. Engaging in testing, evaluations, and presenting findings within the BMW Group.
Cybersecurity manager leading defense and offensive teams at a comprehensive bank in São Paulo. Responsible for strategic and operational cybersecurity measures and compliance.