Cyber Security Manager

Grant Thornton UK LLP is part of a global network of independent audit, tax and advisory firms, made up of some 73,000 people in over 150 countries. We're a team of independent thinkers who put quality, inclusion and integrity first. All around the world we bring a different experience to our clients. A better experience. One that delivers the expertise they need in a way that goes beyond. Personal, proactive, and agile. That's Grant Thornton.

Grant Thornton's Cyber Advisory team provides cyber security assurance and advisory services to organisations to identify risks and assisting them in developing and implementing effective and pragmatic solutions. The team consists of specialists with backgrounds in either professional consultancy or who have worked in industry for a number of years and have gained experience through working in operational roles.

A look into the role

As a Cyber Security Manager within the Cyber Advisory team, you will:

1. Work as part of a team, providing hands-on advisory service that exceeds our clients’ expectations.
2. Provide cyber security advisory and assurance services to the clients.
3. Work on delivery of assignments such as gap assessments, maturity assessments, security assurance reviews, compliance reviews and third-party assurance reviews.
4. Provide recommendations and build roadmaps to improve clients’ security posture.
5. Write up findings and draft reports, ensuring written work is of a high standard, factually correct, and tailored to the needs of the intended audience.
6. Support the delivery of client-facing projects of varying sizes.
7. Deliver presentations to clients and stakeholders within Grant Thornton.
8. Support the development of junior team members through guidance and timely feedback.
9. Support the growth of the practice through developing our client offerings, managing proposals and tenders, and writing thought leadership.

Knowing you’re right for us

Joining us as a Cyber Security Manager, the minimum criteria you’ll need is experience in cyber security ideally within a large commercial organisation or a Consulting Firm. It would be great if you had some of the following skills, but don’t worry if you don’t tick every box, we’ll help you develop along the way:

1. Strong experience of undertaking gap assessments, maturity assessments, security assurance reviews, compliance reviews and third-party assurance reviews.
2. Strong experience of undertaking interviews, written analysis and reporting findings.
3. Experience in developing remediation roadmap and providing recommendations to improve cyber resilience.
4. Experience of taking ownership of assigned areas, and delivering high quality outputs, to time and budget.
5. Ability to report, present and justify conclusions to project teams and business stakeholders.
6. Strong technical knowledge of infrastructure components, security technologies and supporting processes.
7. Solid understanding of cyber security concepts and technology controls.
8. Strong technical understanding of both on-premise and cloud architectures.
9. Experience of security testing principles, vulnerability scanning, risk identification, resolution, and reporting.
10. Familiarity with penetration testing tools and methodologies.
11. Ability to clearly communicate complex security concepts and findings to clients, both technical and non-technical stakeholders.
12. Experience of evaluating security policies, procedures, and controls to ensure they are effective and up-to-date.
13. Understanding of cyber security frameworks such as ISO27001, NIST and NCSC CAF.
14. Professional security certification such as CISSP, CISM, CEH or OSCP.

Knowing we’re right for you

Embracing uniqueness, the culture at Grant Thornton thrives on the contributions of all our people. We never settle for what is easy; we look beyond to deliver the right thing, for everyone. Building an inclusive culture, where we value difference and respect our colleagues helps our people to perform at the best of their ability and realise their potential.

Our open and accessible culture means you’ll interact with leaders who are interested in you and everything you bring to our firm. The things that set you apart, we value them. That’s why we give you the freedom to bring your whole self to work and pursue your passions inside and outside of work.

Beyond the job

Life is more than work. The things you do, and the people you’re with outside of work matter, that’s why we’re happy to look at flexible working options for all our roles, and we’ll always do our best to keep your work and life in balance.

The impact you can make here will go far beyond your day job. From secondments to fundraising for local charities or investing in entrepreneurs in the developing world, you’ll be giving back to society. It’s that drive to do the right thing that runs through our every move, grounded in our firm’s values – purposefully driven, actively curious and candid but kind.

We’re looking for people who want to contribute, spark fresh ideas and go beyond expectations. People who want to be able to proudly do what’s right, for the firm, our clients, our people and themselves. It’s how it should be.

The things you do, and the people you're with outside of work matter, that's why we're happy to look at flexible working options for all our roles, and we'll always do our best to keep your work and life in balance. Whether that's working reduced contracted hours, working your hours over a shorter period or utilising our 'how we work' framework. Everyone has an immediate right to request a flexible arrangement through our flexible working policy. Read more about our approach to flexible working.