Information Security Consultant

Social network you want to login/join with:

Assist with security incident management and response activities.

Provide general day-to-day support in managing and responding to security alerts from systems and end users.

Perform daily, weekly, and monthly security checks, reconciliation, compliance checks, and investigate exceptions.

Complete client security requirement questionnaires and support the bidding process.

Identify and raise awareness of security risks.

Develop and enhance security policies, processes, procedures, and technical controls to strengthen security capabilities and resilience to cyber threats.

Take a proactive role in identifying security risks, mitigations, and opportunities to enhance resilience to cyber-attacks and security incidents.

Participate in the design and implementation of systems and applications.

Develop user and technical training guides.

Maintain and manage the IT Risk register.

Test Disaster Recovery (DR) plans and capabilities to ensure they function as designed, identify gaps, and incorporate lessons learned, working with the business to drive continual development and enhancement.

Technical Requirements:

At least two years of hands-on experience in security and/or infrastructure within an enterprise environment.

Exposure to enterprise information security standards including Cyber Essentials, ISO 27001, 27002, etc., Data Protection Act, and GDPR.

Experience with Microsoft O365 Security solutions, networking, security operations, vulnerability management, and security auditing.

Good understanding of security testing principles, including vulnerability scanning, risk identification, resolution, and reporting.

Experience in formal document creation, such as reports or procedures.

Detailed knowledge of:

Threat intelligence analysis and best practices.

Security incident response processes, procedures, and best practices.

Disaster recovery and business continuity principles.