Information Security Lead, Starling Bank
Incident Response
1-5 days a week in office
Mobile-first bank offering personal, joint and business accounts
Open for applications
Mobile-first bank offering personal, joint and business accounts
1001+ employees
Open for applications
1-5 days a week in office
1001+ employees
Company mission
Anne Boden founded Starling with a clear goal: to build a bank that would help you manage your money, all from one app. Their vision is to give everyone clarity and control over their money so they have the opportunity to enjoy a healthy financial life.
Role
Who you are
- The role will suit an ambitious information security or cyber specialist, with strong team building and leadership skills who has a desire to invest their knowledge and experience into a growing function and make a measurable impact
- Have previous experience in a similar role leading, developing and motivating a team of subject matter experts and other managers in Information and Cyber Security
- Have previous experience working in a complex IT organisation encompassing service delivery, application development and IT infrastructure
- An understanding of best practice within Information Security and risk management including standards such as NIST, CIS, and OWASP
- Practical experience utilising threat analysis models such as MITRE ATT&CK to inform the prioritisation and enhancement of detective controls and the Bank’s defensive posture
- Have experience in acting as both Commander and SME during incidents and investigations
- Be a Self Starter with the ability to lead, inspire and drive change through an organisation
- Have the ability to be pragmatic while balancing the needs of the Bank against security
- An understanding of current and emerging threats and countermeasures and the organisational challenges to addressing these threats
- An understanding of Application Security threats and countermeasures
- A good practical knowledge of security technologies and wider business solutions including Identity and access management, SIEM, remote working and cloud technologies
- A good understanding of financial services and awareness of broader requirements
- It would be great if you have one or more of the following qualifications, but it’s not essential
- Certified Information Security Manager (CISM),
- Certified Information Systems Security Professional (CISSP), or
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Forensic Examiner (GCFE)
What the job involves
- Here at Starling we are growing, and we are keen to recruit an Information Security Lead as part of our continued investment in Information and Cyber Security capability
- Reporting to the Information Security Director - Operations, the Security Lead will act as line manager to a team of Information Security Analysts
- The successful candidate will support the continuous development and delivery of the SOC’s Triage capability
- Lead a team of subject matter experts and analysts to ensure Information Security is managed and continuously improved in line with Bank policy and procedure
- Supporting the development and progression of the Information Security Analyst team from both a technical and professional perspective
- Support in the enhancement and continuous improvement of the Bank’s Information and Cyber Security systems, processes and procedures, and optimise reporting of identified threats and vulnerabilities
- Act as a point escalation for Incident Response within the Security Operations team
- Act as an Information Security SME for Business Continuity and Crisis Management Planning; this includes supporting cyber business impact analysis and tabletop exercises
- Supporting the development of the Cyber Incident Response capability and ensuring coherence with the broader response capability
- Assist as necessary to investigate security Incidents
- Support and drive the continuous improvement of Response based runbooks
- Support and drive the continuous development of Information Security Use Case creation, and automation playbooks
- Drive the continuous development of a 24/7 OnCall Model
- Working in parallel with SOC and wider security teams to increase defensive and detective controls
- Take responsibility and do the right thing for customers, colleagues and partners
Application process
- First Interview: 45 minutes
- Technical Interview: 90 minutes
- Final Interview: 45 minutes
Salary benchmarks
Our take
Starling started life focused on consumer banking, they have since found most of their success by competing in the business banking space. They’ve caught up with Tide and beaten the likes of Monzo and Revolut to a more complete offering for businesses.
This progress resulted in them receiving a £100m grant in April 2019 from a body created to boost competition in SME banking, which they're using to accelerate building a full suite of digital banking products: intelligent forecasting tools, and digitally-enabled relationship management functions as well as lending products.
As well as continuing to expand in the UK, they’re expanding in Europe. They’re imminently launching an international bank in Dublin, which will allow Starling to offer its current account across the European Union after Brexit.
Banking for small businesses has historically been ignored even though the experience is poor. Starling is in tune with knowing what their customers want, and they continue to build out their range of third-party products within its banking app thanks to support from its open API. They currently have 11 integrations, including Xero, but that figure continues to grow.
Steph
Company Specialist
Insights
Many candidates hear
back within 2 weeks
43% female employees
40% employee growth in 12 months
Company
Funding (last 2 of 11 rounds)
Apr 2022
$170.4m
LATE VC
Jun 2021
$45.7m
LATE VC
Total funding: $1.1bn
Company benefits
- 25 days holiday (plus take your public holiday allowance whenever works best for you)
- An extra day’s holiday for your birthday
- Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off!
- 16 hours paid volunteering time a year
- Salary sacrifice, company enhanced pension scheme
- Life insurance at 4x your salary & group income protection
- Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton
- Generous family-friendly policies
- Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks
- Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing
- Incentives refer a friend scheme
Company values
- Do the right thing
- Listen
- Aim for greatness
- Own it
- Keep it simple
Company HQ
Spitalfields, London, UK
Leadership
Anne Boden
(Founder)Held senior roles in finance over a 30 year career, including COO for AIB and Head of EMEA for RBS.
Diversity & Inclusion at Starling Bank
Manuela Torrijos-Simon (Group Financial Controller)
- In the spirit of Aiming for Greatness and Doing the Right Thing, we want to be the bank with the best approach to Diversity and Inclusion
- The Always Open Forum at Starling empowers employees to come together and own their areas of interest, supporting their agenda both internally and externally
- The forum creates a safe space for conversations about all Diversity and Inclusion topics, with the spotlight currently on 3 focus areas; Race and Ethnicity, LGBTQ+ and Mental Health.
- We’re about to launch a new group to support Disability, and all of these teams help bring Starlings together to improve our workplace
Share this job
View 18 more jobs at Starling Bank