Senior Cyber Security Consultant - London, United Kingdom - Sanderson

Sanderson
Sanderson
Verified Company
London, United Kingdom

3 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

Senior Cyber Security Consultant

London - Mainly Remote

£90,000 - £100,000 + benefits


Fantastic new opportunity for an experienced Senior Cyber Security Consultant for this small but growing consultancy specialising within the Cyber / Information Security sector.

You will be joining the business as they look to grow and develop their Cyber/ Information security practice and will provide specialist technical advice to their customers around Security Threats, Tooling, SIEM solutions ect.


You will bring clear, authoritative, and heavyweight experience of advising clients on how to transform their security posture into their new Resilience Delivery Unit.

Reporting to the Executive Director, Security & Resilience, you will be effective operatingat C-suite level as a trusted adviser on security risk, investment choices and data privacy issues.

You will spearhead business development and delivery projects to drive better resilience outcomes for their clients.


Key Responsibilities:


  • Provide security consultancy support in the creation and growth of the Resilience Delivery Unit
  • Work autonomously, and as part of multidisciplinary teams, to drive resilience outcomes for their clients
  • Bring practical experience of audit and advisory projects at an appropriate level of sophistication to assess systems, interpret data, frame problems, identify solutions and document materials to transform our client's security posture
  • Translate security regulations and Industry standards into practical advice to show their clients how they can improve the resilience of onpremises, cloud and hybrid environments
  • Advise clients on the maturity assessment of systems and processes to increase security value from tooling including, but not limited to, zero trust, SIEM, SOAR, extended detection & response services, behavioural analytics, SOC automation & tooling simplification,cloudbased security controls and DevSecOps
  • Run technical workshops and associated deliverables, helping stakeholders understand implications & actions to take
  • Enjoy staying current with new technologies, threats and feedback from the market
  • Spend time with partners to track latest products, contribute to roadmaps and wider Industry thought leadership
  • Inject pragmatism into conversations to maximise their client's security ROI

Key Skills and Experience:


  • Demonstrate breadth of experience in security advisory roles, having worked in multidisciplinary teams of large organisations at a significant level of complexity, scale and risk
  • Be passionate about security, able to story tell hybrid and cloud security transformation, data privacy, identity, risk and audit topics in the context of improving resilience outcomes
  • Show expertise of translating threat information and attack scenario modelling into risk assessment and the modification of security controls in large transformation programmes
  • Demonstrate depth of experience in maturity assessment and risk advisory services, especially helping clients improve security ROI from nextgeneration SOC tooling, cloud and hybrid security models
  • Be comfortable working with Csuite decisionmakers to make the case for investment, call out issues requiring investigation and advise on actions to take at an appropriate level of sophistication
  • Work as glue between architects, incident handling and CISO stakeholders to measure the efficacy of existing solutions, identify gaps, assess maturity and recommend action to transform security postures
  • Enjoy clientfacing roles assessing the maturity and coverage of existing security policy, whilst having the problemsolving ability and enthusiasm to dive deep with technical stakeholders at a system level
  • Possess certifications including CISSP, CISM, CISMP, SSCP, CISA or CompTIA Security+
  • Be familiar with Microsoft and AWS cloud security portfolios
  • Be knowledgeable of security technical standards together with wider approaches & frameworks including PCI-DSS, NIST, CAF, ISO/IEC 27001, MITRE etc.
  • Be an effective communicator, able to influence decisions in business risk assessment discussions and technical systems planning
  • Willing and able to undergo security clearance
  • Be ready to travel throughout the UK to work with clients on site
For any further queries regarding the role, please contact Danny Palmer on or at
More jobs from Sanderson
See all jobs of Sanderson