Security Consultant

Sorry, this advert is now closed. Click here to view our live vacancies.

Role overview:

We are currently looking for Security Consultants for a contract role with one of our large financial services clients.

We are interested in hearing from individuals with experience in a Security Consultancy capacity with further experience in the areas of Architecture or Engineering who will be able to support the delivery of multiple programmes of work to mature our clients’ capability in the management of cyber security risk. ​

 

Start Date: ASAP​
Term: 12 months​
Location: London (2 days per week) Preferred, although client may also be open to Remote.

 

Key deliverables:

  • Produce security documentation including:​
    • Threat models​
    • Security requirements​
    • Solution security design​
    • Security issues, gaps and risks​
    • Pen Test scoping and vulnerability management​
    • Process workflows and security guidance.
  • Provide service for network architecture/design and implementation of Projects.​
  • Define technical security requirements and controls.
  • Analyse solution designs to identify potential weaknesses.​
  • Influence the secure design of solutions in line with security standards and the organisations risk tolerance.
  • Maintain artefacts for evidence of tasks performed and decisions made as part of the organisations Security Architecture PSAF process.
  • Capture threats, risks or exceptions formally through required processes.
  • Assist in security testing processes and advise on findings from security testing.

 

Key skills required: ​

  • ​Guide product and business teams on security best practices, and Corporate Security policies and procedures to ensure secure products are developed​.
  • Provide assurance that products are developed and deployed with the right balance of security to protect against threats to the business, built upon reliable processes and procedures​.
  • Develop and improve security standards and frameworks to meet future needs of the organisation.​
  • Broad security experience across a range of disciplines with demonstrable experience of implementing technology or business process solutions across software development, architecture, network security, assurance testing​.
  • Natural ability to negotiate with business to balance risk and security requirements with business opportunity, while ensuring ongoing compliance and regulatory needs​.
  • The ability to work with teams and manage expectations while building strong business relationships​.
  • Confident providing technical guidance to team members for complex decisions including network design, cryptography, application security, data protection, identity and access management etc​.
  • Experience of security governance frameworks as well as producing required security outputs, including documentation and threat models over the course of projects to meet deadlines​.
  • Experience working with a range of security standards, such as ISO27001, NIST SP800-53, PCI-DSS etc​.
  • Motivated self-starter with agility, ability to manage ambiguity, deal with and anticipate change, while still meeting business objectives​.
  • Organisation of security assurance testing, using third party vendors​.
  • Natural ability to negotiate with business to balance risk with business opportunity, while ensuring ongoing compliance and regulatory needs.​
  • Recent financial services experience essential.

 

Please note this requirement does not support overseas working and will be Inside IR35.

#LI-DNI

Contract
26 September 2024
SME
Apply