Associate Cyber Security Risk and Assurance Consultant

Job Title: Associate Cyber Security Risk and Assurance Consultant

Location: Remote, UK

Salary: £60,000 – £80,000

Skills: Cyber Security, Risk, Governance, GDPR, IS0 27001, IS0 27701, ISO 270xx, SOC2, NIST

The Company

A Leading Cyber Security Managed Service Provider are seeking an Associate Cyber Security Risk Advisory consultant to work a flexible, remote based role. This company have grown to be one of the leading Managed Service Providers in the UK and specialise in Penetration Testing, Cloud Security, Security Integration, and Information Risk advisory. This multi award winning MSSP, who has been in the industry for over 15 years, have offices In Europe and the US. They have a diverse, collaborative, and fast paced business with employees from over 35 nationalities. As a company, they have a strong focus on employee development, progression with training budgets in place to upskill and further educate their workforce.

The Role

As an Associate Cyber Security Risk Advisory consultant, reporting to the Head of Cyber Security and CEO, you will be conducting deep, pragmatic and business critical advice to client’s specifically surrounding the Governance, Risk, and Compliance elements of their business. Acting as a virtual CISO at enterprise level you will strategically manage various risks associated with their environment to safeguard information security.

Activities

• Acting as virtual CISO
• Cyber Risk Management
• Conducting Privacy and Security Audits
• Collaborating with Stakeholders within each business to define and establish privacy requirements
• Implementing Strong Data Privacy Practices
• Mentoring Senior Leadership
• Planning Business Strategy, programs, Products/Services and Operations
• Maintaining security Policies, Standards, Frameworks, Procedures and Guidelines
• Ensuring the Standards are kept within Strategy and Compliance Programs

Senior Security Analyst Overview

• Acting as the virtual CISO you will Lead all aspects of the improvement across the security of Information within the customers environment
• Lead all aspects of and continuously improve the governance and management of security and privacy to reflect changing technology, threat landscapes, regulatory requirements, and industry standard methodologies
• Conducting in depth cloud security assessments
• Conducting assessments impact assessments within privacy and guiding the customers in implementing stronger data privacy practices
• Evaluate the design creation and the effectiveness of clients’ current privacy and security controls from a risk, compliance, and assurance perspective
• Identify opportunities for improvement for the customers whilst liaising with our Sales team and collaborate with the wider business to develop a potential lead for our technical services
• Travel (national and international) may be required as part of this role, and as such a clean driving license and access to a car are essential

Skills / Experience required for the role

• Minimum of 5+ years’ experience within Cyber Security and Data Privacy
• Experience in working with C-Level executives and other senior partners
• The ability to communicate security risk-related concepts to technical and non-technical audiences
• Has the ability to understand the context and technology challenges over multiple business environments to handle uncertainty to apply specific security solutions for multiple tasks and needs
• Strong ability to understand PII and data flows from a technical perspective
• Significant experience working with Software/Infrastructure/Platform-as-a-Service solutions and architectures
• Understanding of the design principles of secure cloud and CSP’shared security models
• Flexibility within your working methods (the role may require you to work extra hours to fit with the clients needs)
• A Strong understanding of industry standards in privacy (GDPR, ISO 27001, ISO 27701, ISO 27018).
• Understanding of ITIL, ISO 27001, ISO 20000, PCI, DSS or SANS
• Strong knowledge of security and compliance frameworks, standards and regulations (such as SOC2, Cloud Security Alliance (CSA), NIST, COBIT, PCI-DSS, GDPR, DPA, ISO270xx)

If you are looking for an exciting client facing, Associate Cyber Security Risk and Assurance Consultant/Advisor within a growing practice and want the opportunity to gain further experience in a key field of expertise. As well as further education and training with a large budget as part of the company growth strategy for 2021, you will work with market leading clients in a fast paced, award winning, diverse business whilst working with market leading cyber security techniques and technologies. Please do not hesitate to get in touch.