Cyber Security Manager

Apply now »

Publish Date: Jun 15, 2022

Location: Edinburgh, Scotland, GB

Company: worldline

About Worldline
Worldline [Euronext: WLN] is the European leader in the payments and transactional services industry and #4 player worldwide. With its global reach and its commitment to innovation, Worldline is the technology partner of choice for merchants, banks and third-party acquirers as well as public transport operators, government agencies and industrial companies in all sectors. Powered by over 20,000 employees in more than 50 countries, Worldline provides its clients with sustainable, trusted and secure solutions across the payment value chain, fostering their business growth wherever they are. Services offered by Worldline in the areas of Merchant Services; Terminals, Solutions & Services; Financial Services and Mobility & e-Transactional Services include domestic and cross-border commercial acquiring, both in-store and online, highly-secure payment transaction processing, a broad portfolio of payment terminals as well as e-ticketing and digital services in the industrial environment. In 2019 Worldline generated a proforma revenue of 5.3 billion euros. worldline.com

 

Ingenico Northern Europe Region (NER) operates a number of client-facing and back-office services which deal with various categories of information, with Ingenico acting as a data controller and as a data processor under the instruction of our partners and customers.

Within this context, this role requires the leadership and management of Ingenico’s NER’s information security strategy and policies, as well as acting as a subject-matter expert providing guidance to others on good practice around operational security matters, to ensure that we have the appropriate level of governance, transparency, controls and evidence to demonstrate that we have a robust information security framework.

In addition to the core discipline, the role will require strong customer-facing skills, specifically around the coordination and tracking of customer-led audits of Ingenico’s information security posture and controls.

At Worldline, our technology addresses persistent challenges of the payment world. We design and operate leading digital payment and transactional solutions that enable sustainable economic growth and reinforce trust and security in our societies. If you are a highly-skilled  Cyber Security Manager/Information Security Officer, then get ready to join our company!

We have many hardworking and dedicated peers that would love for you to work with them. We are committed to continuous improvement. We are always looking for new and innovative ways to improve quality, reduce costs, build excellent solutions, and grow customer happiness. We would like to welcome an organized, innovative and process driven colleague to our team.

 

Your day-to-day responsibilities include:

The Information Security Officer provides the business and clients with a central point of ownership of Ingenico NERs information security framework. Specifically, the role will encompass the following key responsibilities:

  • You fully understand and implement group security policies and processes and procure approval for local exemptions where necessary
  • You liaise with multidisciplinary teams across the business to promote adherence to policy and procedures, and good practice around information classification, handling and security controls.
  • You manage the acquisition and maintenance of Cyber Essentials certification for selected systems and organisation within the NER perimeter
  • You carry out security risk assessments and audits of systems withing the NER perimeter and coordinate/facilitate remediation working with relevant resolver teams
  • You manage penetration testing and vulnerability scans
  • You support and facilitate external audits and respond to customer information security queries and formal information requests
  • You oversee and audit the identity and access management controls
  • You manage the re-certification of UK facilities to PCI PIN and PCI P2PE standards, providing the security subject matter expertise
  • You promote and assure security by design in software systems, networks and data centres
  • You actively gather intelligence from across the information security landscape and target dissemination/training to inform our practice.
  • You monitor all security events during 24X7 (on call outside of office hours) using SIEM, IPS/IDS, web filtering , WAF , Antivirus  and correlate to identify any security threat
  • You manage security incidents being the primary responsible for prompt containment, analysis of incidents and liaising with competent external authorities (e.g. police)
  • You serve as a key interface to Ingenico Group functions related to information security (e.g. DPO).

Signs of success:

  • Your contributions lead to demonstratable improvements in Ingenico NER’s information security posture (review twice annually).
  • You carry out operational security activities in line with strategy/framework/policy/procedure, with robust supporting evidence (review every three months).
  • You track remediation actions from audits transparently and assure delivery plans progress to schedule (review every month).
  • You build strong relationships within the Northern Europe Region organisation (review every three months).

Skills we can’t do without:

  • You have strong and credible technical authority in information/cyber security practices
  • You have demonstrable experience of delivering a high standard of continuous improvement activities in the area of information/cyber security.
  • You have demonstrable experience of managing stakeholder (all levels of seniority) expectation and satisfaction effectively.
  • You have demonstrable experience in implementing VaaS, IDMaaS, Network security, SIEM , asset risk management and threat management.
  • You have demonstrable experience in information security products for software management and IT operations.
  • You have demonstrable experience in getting providing evidence for security audit and getting organisation certified with Information Security Management System
  • You have experience of overseeing PCI PIN and PCI P2PE certified facilities
  • You have good verbal and written communication skills
  • You have good client-facing skills.
  • You are structured and organized with excellent attention to detail
  • You have strong interpersonal skills
  • You have 3+ years of experience in an information/cyber security SME role
  • You have proven experience of working within a professional, fast moving and challenging environment
  • You have experience of working across mixed stakeholder groups and business levels
  • You are proficient with Microsoft Office applications including PowerPoint & Visio.

Skills we’d like:

  • You have a good degree from a leading university in a technical subject, software engineering preferred
  • You have experience in payments sector; transaction based business models (e.g. payment services, credit cards, consumer finance, transaction banking)
  • You are able to work with customers (both internal & external) of all cultures.
  • You are an influential communicator
  • You are persuasive and persistent
  • You lead by example

 

ore reasons to join us:

In addition to joining a global leader in digital transformation, you can also expect an excellent range of benefits. These include: a rewarding salary, generous annual leave, private medical insurance, an attractive pension scheme plus many more. We also operate a flexible benefits scheme, allowing you to purchase discounted products and services.

What’s more, we really value Innovation, Cooperation, Excellence and Empowerment. These values are reflected on our daily work. This is the core of our organization. At Worldline our top priority is to engage, encourage and develop you to help you improve your potential. In fact, we have comprehensive training and development programs in place demonstrating our dedication to developing your career.

Our success comes from strong skills, new insights, diverse points of view and the energy of all Worldliners. Not only do they represent the Heart and Face of our company, they are also key players in our success. We make leading our talents a major asset in the success of our business.

Worldline is proud to be an Equal Opportunity employer. We do not discriminate based upon race, religion, colour, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, age, status as an individual with a disability, or other applicable legally protected characteristics.

 

The 20 000 employees of Worldline are all different but share the same values. You can see it in the way we behave. We are curious and humble – we are learning every day, we keep things simple and everyone engaged. In our fast-moving industry, we are adaptable and life-long learners. Everyone demonstrates the same dedication to quality and efficiency. We have an entrepreneurial spirit and sense of service. Above all, we never turn our back on a challenge. These values nurture a dynamic and innovative team where everyone can develop and grow


Job Segment: Test Engineer, Software Engineer, Testing, Engineer, Information Security, Engineering, Technology