We are currently looking for a Security Controls SME to work with our consultancy team on an engagement with one of our high-profile financial services clients. This role will be responsible for the delivery of regulatory analysis, control mapping, and roadmap development for global network security controls. The focus will be to align network security controls to global regulatory requirements and assess operational effectiveness.
Ideal Skills and Experience
- Good network security control knowledge — architecture, segmentation, enforcement points (firewalls, WAF, IDS/IPS, DDoS).
- Experience mapping controls against frameworks (NIST CSF, CIS v8, ISO 27001) and identifying gaps.
- Understanding of financial services regulatory environments – ideally exposure to DORA, HKMA, MAS, RBI, FFIEC, PRA/FCA.
- Proven ability to interpret and translate regulatory requirements into control obligations.
- Strong analytical and documentation skills – comfortable producing control mappings, maturity assessments, and roadmap artefacts.
- Consulting experience in control design or assurance preferred (Big 4 or Tier 1 bank background ideal).
- Excellent written and verbal communication; confident engaging senior stakeholders.
- Desirable certifications: CISSP, CISM, CRISC, ISO 27001 Lead Auditor (or equivalent experience).
#LI_DNI
#LI-DNI