Senior Consultant- Cyber Security Consulting & Advisory

Senior Consultant - Cyber Security Consulting & Advisory Consultant

Company: ITL UK

Requisition ID: 132345BR

Role: Senior Consultant (JL5)

Technology: Cyber Security Consulting & Advisory

Location: United Kingdom (London)

Business Unit: Cyber Security, Cyber C&A Team

Compensation: Competitive (including bonus)

Job Description:

Today, the corporate landscape is dynamic and the world ahead is full of possibilities! None of the amazing things we do at Infosys would be possible without an equally amazing culture, the environment where ideas can flourish and where you are empowered to move forward as far as your ideas will take you.

At Infosys, we assure that your career will never stand still, we will inspire you to build what’s next and we will navigate further together. Our journey of learnability, values and trusted relationships with our clients continue to be the cornerstones of our organization and these values are upheld only because of our people.

Your role:

As a Consultant in the Infosys Cyber Security Consulting & Advisory (C&A) Team, you are an expert at contributing to different phases of the Cyber Security consulting lifecycle. You will be intensely involved in being a highly skilled Cybersecurity practitioner in primary skills associated with GRC, as well as secondary skills - Technical (e.g., IDAM, Engineering, Network, IoT/OT security). The successful candidate will play a critical role in the Practice in support of clients and their security roadmap, business G&OS, and at times compliance requirements through Assessments, Design reviews, and Upgrades.

This role requires a deep understanding of GRC cybersecurity, with secondary skills in a domain area of cyber security ISMS, whilst working with cross-functional teams to enhance the security posture of clients' Cyber Security strategy at both operational and tactical levels, as well as Enterprise.

You will guide teams both onshore and offshore on project processes, deliverables, contribute to proposal development, client training, and internal capability-building, and help detail the project scope. You will have the opportunity to shape value-adding consulting solutions that enable our clients to meet the changing needs of the global landscape.

Required:

• Industry experience working in enterprise cyber security domain
• Security Practitioner, which includes execution of operational/tactical as well as strategy & program cyber security. Able to support the cyber security roadmap and management inclusive of security risk management, its development, lead a team and align security measures with enterprise IT security frameworks.
• Understanding of Security Solutions: MS Sentinel/Defender/Entra, Zscaler ZPA ZTMA, CrowdStrike, CyberArk, SailPoint, Ping, and ability to design and build a controls dashboard from evidence outputs from MS solutions, using ISO27K, NIST, NIS 2, DORA, TISAX, PCI, and/or equivalent.
• Exposure to Threat Methodology and Incident Response: Identify, analyze, and respond to security events and incidents from a process point of view, with insights towards recommended remediation activities, in conjunction with operational team exposure and cyber threat mitigation.
• Security Assessments & Compliance: Exposure to security assessments, evaluate risk, and ensure compliance with IEC 62443, NIST SP 800-82, NERC CIP, ISO 27001, and NIS2 frameworks or combination.
• Vulnerability & Risk Management: Able to implement risk mitigation strategies tailored for ICS/SCADA and IoT environments.
• Vendor & Third-Party Security Management: Assess and oversee third-party vendors providing security solutions, ensuring their compliance with security policies and industry best practices.
• Training & Awareness: Develop and conduct cybersecurity training and awareness programs for internal teams, partners, and executives.
• Emerging Threats & Technologies: Stay informed about new cybersecurity threats, vulnerabilities, and emerging technologies in industrial cybersecurity, IoT security, and critical infrastructure protection.
• Good level of awareness in one or more of the cyber industry trends and technologies (e.g., Zero Trust Architecture, Responsible AI, Security Automation, Cyber Vendor consolidation, DevSecOps, Cyber Mesh Architecture, etc.).
• Experience with similar roles in consulting teams or organizations.
• Relevant industry certifications in cyber security and/or connected area such as Data Privacy.
• Education: Bachelor's degree in Cybersecurity, Information Technology, or a related field.
• Network Security: Exposure to Firewalls, IDS/IPS, VPNs, authentication systems, PKI, log management, and content filtering.
• Cybersecurity Frameworks: Familiarity with NIST, IEC 62443, ISO 27001, NERC CIP, GSMA IoT Security Guidelines, and other industry security standards.
• Incident Response & Risk Management: Experience in security monitoring, incident response, and risk mitigation.
• Technical Skills: Strong troubleshooting, analytical, and problem-solving abilities.
• Communication & Collaboration: Ability to work independently and within cross-functional teams, with excellent communication and interpersonal skills.
• Project Management: Knowledge of project planning, resource management, financial budgeting, and risk assessment for OT security projects.

Desirable:

• A broad outlook through exposure to an ecosystem of diverse cultures, stakeholders, as well as emerging tools, technologies, regulations, standards, etc.
• Relevant industry certifications in cyber security and/or connected areas such as Data Privacy.
• Excellent verbal and written communication skills (bonus if candidate can speak German and another European language).

About Infosys:

Infosys is a global leader in next-generation digital services and consulting. We enable clients in 54 countries to navigate their digital transformation. With over three decades of experience in managing the systems and workings of global enterprises, we expertly steer our clients through the many next stages of their digital journey.

All aspects of employment at Infosys are based on merit, competence, and performance. We are committed to embracing diversity and creating an inclusive environment for all employees. Infosys is proud to be an equal opportunity employer.