Information Security Consultant Secure Change

Job Introduction

We are seeking a versatile and proactive Information Security Consultant to join Handelsbanken UK which is currently undergoing a major technology transformation programme. The successful candidate will be embedded within a technology delivery team, playing a critical role in ensuring that security is integrated seamlessly into change initiatives from inception through delivery. 

The Bank operates an model where information security consultants are embedded into workstreams acting as the security lead for that delivery team. This is not a traditional advisory role — you will be actively participating in solving information security problems, working closely with engineers, product managers, and business stakeholders to identify, assess, and collaboratively solve security challenges and ensure the team can continue to deliver a pace.

This is a unique opportunity to work on an exciting technology change programme, influencing the security posture of critical Bank systems while collaborating closely with engineers, product managers, and business stakeholders. You’ll often operate independently of other security and privacy subject matter experts, so a broad and deep understanding of security and privacy domains is essential — from secure architecture and threat modelling to data protection and regulatory compliance

If you thrive on autonomy, love solving complex problems, and want to see the real-world impact of your work in a critical industry — this is the role for you.

Main Responsibilities 

• Problem Solving - You will  develop a deep knowledge of your workstreams technology stack and business outcomes allowing you to not only identify security risks but identify and propose practical solutions to the team. This role is all about helping teams deliver securely  not just calling out risks. 
• Risk and Control Assessments – You will lead risk & control assessments using the Banks defined processes, covering supplier due diligence, privacy impact assessments and project security.
• Risk Management – You will support your workstream identify and articulate risks, steering them towards appropriate treatment plans, documenting mitigating controls and ensuring these are actions within agreed timeframes. You will operate in line with the Bank's Risk Management framework (including sub-frameworks) and relevant risk and compliance policies and procedures, ensuring appropriate and timely escalation of any concerns to your line manager.
• Advisory – You will provide specialist advice and interpretation of Information Security best practice and UK regulatory requirements to a range of different stakeholders as new products, processes and systems are developed. You will need to be aware of your own knowledge gaps and when & where to seek specialist input to solve a particular problem or query
• Subject Matter Expertise – You will develop a deep knowledge of the Banks secure change processes and procedures, shepherding your workstream through various assessments and approval gates
• Relationship Management – You will build deep, trust based relationships with key stakeholders within your delivery team such as developers, testers, product managers, delivery leads and tech leads. You will be an active member of the delivery team, attending daily stand-ups, PI planning sessions and working groups.   

Ideal Candidate

Research (by Harvard University) shows that women are particularly likely to second guess themselves and not apply - so if you are worried you don't meet all the criteria, get in touch anyhow and let us do the worrying…

• You are a skilled communicator, able to convey complex security issues to a wide audience, including non-technical colleagues.
• You love building strong interpersonal relationships across engineering, product, compliance, and business teams to foster a culture of shared security ownership.
• You are great at identifying information security risks and you enjoy finding creative solutions problems.
• You have a wide range of information security knowledge and, crucially, you are aware of your own knowledge gaps and able to seek support and guidance as required.
• You understand the intersection of Risk Management and Information Security and how these relate to each other in a Financial Service business (3LoD model)
• Information Security- Solid, practical and demonstrable experience of information security (technical and non technical aspects)
• Privacy – You don’t need to be a privacy expert but you will require a good understanding of core privacy concepts and how these apply to technology change initiatives
• Technology Change – Demonstrable experience of supporting technology change initiatives to deliver solutions securely

Company Information

Handelsbanken is a relationship bank with a decentralised way of working, a strong local presence thanks to a nationwide network of branches, and a long-term approach to customer relations. Each Handelsbanken branch operates as a local business enabling it to make decisions at a local level and provide a bespoke service. The focus is always on the need of the individual customer and not on the sale of specific products. 

We are embarking on an exciting Business Transformation journey. This transformation will significantly enhance our technology system systems, processes and services, bringing evolution to our ways of working. Join us in this transformative journey, where your dedication, adaptability and commitment will play a crucial role in shaping the future of banking for our valued customers. 

The Bank is deeply committed to embedding good equality and diversity practice into all of our activities. This is so that we are an inclusive, welcoming and inspiring place to work that encourages everyone to apply, regardless of socio-economic background, age, disability, pregnancy and/or parental status, race (including colour, nationality, and ethnic or national origin), veteran status, marital and civil partnership status, religion or belief, sex, gender reassignment or sexual orientation. 

Check our Handelsbanken website for further information

At Handelsbanken, we deeply value our unique culture and values including trust in and respect for each individual. We take pride in nurturing a work environment where people flourish, and where they are empowered to take decisions in their areas of expertise. We take a long term perspective in everything we do and want each employee who joins us to build a long terms successful career with the Bank.  

What is in it for you?

• We have a wide range of learning and development available, empowering and enabling our colleagues to take ownership of their own development. 
• Competitive Salary and an extensive range of benefits is provided, including private medical insurance, income protection and life assurance
• A market-leading pension contribution of 15% paid by the bank, which can be invested in a wide range of funds (including ESG and Shariah funds)

Application next steps

Your journey with us begins once you have submitted your application. One of our Handelsbanken recruiters will be reviewing your details and will later organise a phone conversation if you match the role requirements. If there is a mutual fit, we will extend an invitation for you to participate in an interview.  

There will be a two stage interview process with a mix of virtual and face to face sessions.  

How can we support you to be your best self? Our Talent Acquisition team will be happy to provide support e.g. if you need additional time to prepare for an interview or you have any requirements for any part of the interview/hiring process – just let us know by email uk_talent@careers.handelsbanken.co.uk. 

This advert will be live for a minimum of two weeks. However, please note that after the two weeks, the closing date could change at any time depending on the number of responses received.

#LI-BH1 #LI-Hybrid