Naukrijobs UK
Register
London Jobs
Manchester Jobs
Liverpool Jobs
Nottingham Jobs
Birmingham Jobs
Cambridge Jobs
Glasgow Jobs
Bristol Jobs
Wales Jobs
Oil & Gas Jobs
Banking Jobs
Construction Jobs
Top Management Jobs
IT - Software Jobs
Medical Healthcare Jobs
Purchase / Logistics Jobs
Sales
Ajax Jobs
Designing Jobs
ASP .NET Jobs
Java Jobs
MySQL Jobs
Sap hr Jobs
Software Testing Jobs
Html Jobs
IT Jobs
Logistics Jobs
Customer Service Jobs
Airport Jobs
Banking Jobs
Driver Jobs
Part Time Jobs
Civil Engineering Jobs
Accountant Jobs
Safety Officer Jobs
Nursing Jobs
Civil Engineering Jobs
Hospitality Jobs
Part Time Jobs
Security Jobs
Finance Jobs
Marketing Jobs
Shipping Jobs
Real Estate Jobs
Telecom Jobs

Senior Information Security Consultant

Evalian
Job LocationLondon
EducationNot Mentioned
Salary£65,000 - £85,000 per annum
IndustryNot Mentioned
Functional AreaNot Mentioned
Job TypePermanent, full-time

Job Description

Evalian, a leading Data Protection and Information Security consultancy, is seeking an experienced Senior Information Security Consultant to join our growing consulting team. Evalian is a data protection and information security consulting business. Founded three years ago, we have grown to employ a team of 16 and work with direct clients and through partners. Our security services include security posture reviews, remediation support, incident response planning, incident response tabletop exercises, secure application development / SSDLC consultancy, awareness training, outsourced CISO and more.About the RoleWorking directly and through our partners, you will work on short term and longer client engagements. You will be providing security leadership and consulting on security risks, controls, GRC activities and security assurance. Activities you may be asked to lead or support include:

  • Assessing client security posture or compliance against guidance or specific standards, such as Cyber Essentials, NCSC guidance, the ISO 27001 family, CIS 20 controls and others.
  • Implementing or advising on security frameworks and risk management strategies and work required to help the client comply with or meet specific standards, such as those listed above.
  • Helping clients to build and implement security incident response capabilities aligned to best practice, including NIST SP 800-61 and ISO 27035.
  • Advising on and assisting with implementation of security controls, risk management, steering groups, internal auditing, and security testing activities
  • Drafting and helping clients to implement security policies, standards, procedures, and work instructions.
  • Carrying out risk assessments in line with industry best practice, including ISO 27005.
  • Delivering threat analysis and risk assessment engagements to help clients identify key threats and actors, key systems, vulnerabilities and provide recommendations.
  • Carrying out threat modelling and helping clients to implement or improve their secure software development lifecycle and application security practices.
  • Advising on cloud security, covering SaaS and IaaS best practices.
  • Advising on and supporting supplier security risk management and carrying out supply chain security due diligence.
  • Providing security awareness training and supporting improved security awareness through training and content creation.
  • Acting as outsourced / virtual CISO or information security manager for clients, including advising their executives on security strategy.
    • The PersonYou will have at least 2 years’ experience in client facing information security consultancy, covering at least some of the activities listed above. You will likely have a technical background, probably in IT and network security, but potentially in application security. If you have a GRC background, but with a strong understanding of technology and technical controls, we are still open to your application.You will be a self-starter who will fill in gaps in your knowledge through continued professional development. You will be happy to research standards and best practice and to tackle new topics. You will also ideally have some of the following knowledge:
  • A working understanding of key security frameworks, including Cyber Essentials and ISO 27001
  • Awareness of GDPR and the Data Protection 2018
  • Awareness of the NIS Directive / Regulations and / or PCI DSS
  • An understanding of security risk management, governance and how security policies and procedures are implemented
  • A strong understanding of common security threats, vulnerabilities, and common technical controls
  • A strong understanding of TCP/IP networks, computers, web technologies and security testing
  • An understanding of secure software development practices
    • Whilst not essential, you may have attained one or more recognised security certifications, which could include (for example):
  • CISMP
  • Security +
  • CISSP
  • CISM
  • PCI DSS QSA
  • ISO 27001 Lead Implementer
  • ISO 27001 Lead Auditor
    • We don’t expect all of these because we’d be looking for a unicorn’ but if you meet some of these and have the relevant client facing consulting experience then we’d be keen to hear from you.The PackageThe salary will depend on your experience and qualifications and will be in the range of £65,000 - £85,000. Benefits include life assurance, medical insurance, dental cashback, and pension. We are looking for a genuine grafter, who can grow within the role and potentially take on leadership of the security consulting team. In return we’ll support your continuing professional development and a good salary and package. We are happy to hear from consultants from across the UK provided you can work effectively from home and are willing to travel to client sites (when permitted). If you are home based youll need to have a dedicated working area and reliable internet connection.You will need to have a driving licence and access to a vehicle that you can use for work purposes.Sounds interesting Click APPLY to send your CV for immediate consideration.Candidates with previous job titles and experience including; Data Security Consultant, IT Security Officer, Data Security Manager, IT Security Consultant, Information Security Manager, Data Protection Consultant, Information Security Manager, IT Security Manager, Information Security Consultant may also be considered for this role.

    APPLY NOW

    Senior Information Security Consultant Related Jobs

    © 2019 Naukrijobs All Rights Reserved