Senior IT Security Officer

IT Security Officer (Technical hands-on Strategy & Transformation)

Surrey or Kent - Flexible hybrid working - 3 days a week in office

An exciting and diverse career opportunity to progress with a global market leader.

Joining a bespoke team, in effect an internal security consultancy, you will have an opportunity to make strategic input and tactical decisions across a wide a varied range of transformation and change programs. You background will allow you to bring 'subject matter expert' input to the security area of all strategic projects.

Your responsibilities will include:

• Core ownership for planning and execution of security elements of strategic projects.
• Delivery responsibility for timely and effective security solutions
• Provide advisory and consultancy services to ensure achievement of business goals
• Provide oversight to secure solutions that are scalable and portable across the business
• Support security risk assessment and problem mitigation
• Deliver technical consultancy on 3rd party and vendor involvement
• Build up expertise in a range of subject matter areas
• Champion future proofing and threat mitigation and continuous innovations in practices, tools and technology

To be a successful you will possess:

• Relevant, current and transferable enterprise security advisory experience
• A track record as a 'go to' technical subject matter expert in Information Security matter. Typically achieved by performing functions such as Security Architect, Security Project Lead, Security Technical expert, DevSecOps
• A technical breadth to include enterprise, distributed systems and cloud technologies.
• Strong practical understanding of Information Security risk management processes and best practice
• Advanced communication and interpersonal skills, including the ability to negotiate and resolve conflict, and to engage effectively with a mixed technical, non-technical and business community
• Strong demonstrable stakeholder management skills, (internal and external)
• Desirable to hold security certification such as CISSP, CISM
• Desirable to hold PenTest certification such as CEH, GIAC
• Desirable to understand risk driven architecture such as Sherwood / SABSA / SANS
• Highly desirable to have exposure to DevSecOps functions.

For clarification:

• This role is NOT GRC, neither is it a SOC role, rather it is more suited to a Security Engineer who has progress to a broader role engaging on multiple concurrent projects, influencing initial idealisation, tool or partner choice, build and design, alongside project management and stakeholder engagement.
• This role requires you to be onsite 3 days a week therefore a reasonable commutable domicile is expected. Office locations including Bristol, also Bolton,Tunbridge Wells or Redhill can be considered
• This role does not currently provide sponsorship support

Reward:

Depending on your level of experience and ability to traverse the requirements laid out above, typical salaries are between £70 - £85,000 plus Personal performance Bonus, Company performance Bonus, Hybrid/Flexible working Pension, Private Medical and a broad range of other employee and lifestyle lead benefits.

Flexible hybrid working is typically 3 days a week in the office. Base location can be Bolton, Bristol, Tunbridge Wells or Redhill

Next Steps

Please "apply Now" with a full CV, highlighting your relevant experience, to be consider for the next stage of this application.

Key terms

IT Security Consultant, Security Architect, Security Lead, Cyber Security Lead, Information Security Consultant, Information Security Specialist, Security Subject Matter Expert, Senior Security Engineer, DevSecOps, CISSP, CISM, CEH, OSCP, GIAC, SABSA, SANS, TOGAF, SAFE, Scrum, Agile, penetration testing, Cloud

We are Disability Confident and neurodiverse aware. If you have a disability, please tell us if there are any reasonable adjustments we can make to assist you in your application or with your recruitment process