Skip to main content

This job has expired

Security Specialist - Innovation

Employer
Allen & Overy LLP
Location
London (Central), London (Greater)
Salary
Competitive
Closing date
13 Jun 2022

View more

Vacancy Type
IT
Contract Type
Permanent
Experience Level
Officer / Analyst / Engineer / Executive / Coordinator
Role Classification
Other Professional

Job Details

Job description

We are currently recruiting for a Security Specialist - Innovation to join our Information Security team in London.  The role is a key member of the Global Information Security team and is focused on six outcomes:

  1. Know the solution providers

Take time to build relationships with the legal innovation solution providers and to understand their technologies and security challenges. Provide awareness training sessions concerning security good practice and enthuse and promote the benefits of good information and cyber security amongst the solution provider cohort.

  • Track new legal innovation projects and sign off security postures

Maintain an accurate view of all the legal innovation projects and their status within the security by design process such that each project has i) An associated documented IS risk assessment ii) An associated documented IS controls framework definition iii) Security sign off for their risk assessments and controls definitions when both reach the appropriate level of quality and effectiveness.

  • Track live legal innovation services and assure security postures

Maintain an accurate view of all the legal innovation services in operation and perform regular assurance checks to ensure the appropriate security controls remain in place.

  • Provide risk assessment and control definition assistance and best practice

Provide technical teams within legal innovation and across IT with guidance and input concerning good practice when conducting risk assessments help the teams to produce good insightful effective risk assessments. When necessary do this in order to provide examples. Further provide guidance and input concerning good practice when defining IS controls in order that solution control definitions are effective particularly with regards to managing the risks associated with the individual solution.

  • Curate the IS risk assessment and controls definition methods

Own and manage and mature IS risk assessment method for legal innovation including the production of standardised risk libraries as the method become more mature. Ensure “how to” documentation is available and that training is also available. Own and manage and mature the controls definition method for legal innovation including the production of standardised control libraries as the method becomes more mature. Ensure “how to” documentation is available and that training is also available.

  • Manage independent assurance (pen test) before legal innovation projects go live

Organise and manage pen tests and subsequent security remediation.

Role and responsibilities

  • Know the solution providers.
  • Track new legal innovation projects and sign off security postures.
  • Track live legal innovation services and assure security postures.
  • Provide risk assessment and control definition assistance and best practice.
  • Curate the IS risk assessment and controls definition methods
  • Manage independent assurance (pen test) before legal innovation projects go live

Key requirements

  • Demonstrate experience of IT security and IT infrastructure security and in particular cloud security architecture approaches for Microsoft Azure.
  • Be educated to degree level ideally in Computing Science or Information Security or Cyber Security.
  • Be familiar with IS risk assessment and the process of documenting and evaluating IS risks in conjunction with designing technical security controls to manage the risk.
  • Demonstrate energy and tenacity and the ability to deliver in time critical and sometimes demanding situations.
  • Have an implicit sense of placing technology and data risk in a business context by pro-actively developing a sound understanding of how the business harnesses data and technology.
  • Be an effective problem solver and be able to work with technical teams locally and globally.
  • Position the benefits of good security and champion the security perspective particularly in advance of signing off risks assessments and controls definitions.

Allen & Overy LLP is committed to being an inclusive employer and we are happy to consider flexible working arrangements. INDSJ

Additional information - External

Allen & Overy is a leading global law firm operating in over thirty countries. By turning our insight, technology and talent into ground-breaking solutions, we’ve earned our reputation as a firm that leads the industry and opens up new possibilities in law. Our lawyers are leaders in their field – and the same goes for our support teams. Ambitious, driven and open to fresh perspectives, we find new ways to deliver our services and maintain our reputation for excellence, in all that we do.

The nature of law is changing and with that change brings unique opportunities. We are defined by our consistent commitment to creating a collaborative and supportive working culture and investing in your progress. We’re committed to supporting a culture that drives diversity and inclusion. Every day, we’re working hard to create an environment where you feel you can bring your authentic self to work. To be comfortable and confident to be who you are in the workplace. To feel like you belong. We offer rewarding careers that are built around your strengths and designed to ensure you can achieve your personal and professional ambitions. Joining our global team, you’ll discover what collaborating on a global scale really looks like; you’ll learn how to help drive change; and you’ll be at the heart of an organisation that’s defining the future of law. If you’re ready to find a place to thrive: It’s Time.

Company

With over 5,600 people in over 40 offices, Allen & Overy is a business doing work of global significance.

Our success is built on the work of talented and motivated people who thrive in a supportive and collaborative environment, dedicated to delivering an exceptional standard of work for our clients. We’re ambitious and forward-thinking, committed to growing our business and meeting the future head-on. We’re not afraid of change, and we believe in challenging the status quo.

What we do goes beyond delivering an outstanding service. We lead the market by creating new solutions for our clients’ most complex legal and business challenges, helping them grow, innovate and thrive. By thinking creatively and entrepreneurially, we challenge expectations, push boundaries and build for the future. We draw on a world-leading network of expertise and a unique platform – such as our Advanced Delivery services and our network of Peerpoint consultants, to set the highest standards for our industry.

Global coverage in today’s market does not simply mean having offices in important cities around the world. For us, it means combining our global resources and sector expertise to work on matters that cross international boundaries with our culturally and geographically diverse teams. For you, it means that wherever you work, you’ll find a culture of inclusion and support – feeling confident to bring your whole self to work every single day. We have developed a culture in which difference is positively valued, and our people are free to be themselves.  At A&O, you're not only valued for what you do, but for who you are. 

We are in every sense one global team; supportive and collaborative, but also ambitious and driven.  Our capacity to combine these qualities and provide a setting in which our people can thrive is what makes us different.

Company info
Website
Telephone
+44 (0) 20 3088 0000
Location
One Bishops Square
London
E1 6AD
GB

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert