Cyber Security Consultant - Risk

  • Reference IP30895-KG-JS
  • Salary £50,000 - £75,000
  • Location Cardiff
  • Job type Permanent

About the company…
Traditionally not known for their technical capabilities our client are completing multiple transformations. The technical teams keep the company at the forefront of technology and as the company scales in projects and size, they have an exciting IT department that are constantly thinking of new ways to improve their functions.

Within the security team, they are creating a secure and robust environment where they can protect their internal and external users. By bringing the security responsibilities in-house they have control over how they utilise the security toolkits and are looking for a few Cyber Security Consultants to assess their risks with current improvements on their cyber security transformations.

About you…
You have a security mindset focussed on risk management; assessing the current technology, architecture and processes to ensure that they are structured in a way to minimise potential risk to the business. You will have a technical background with a strong knowledge across infrastructure technologies that you can utilise, working collaboratively with the technical teams, to conduct risk assessments across multiple internal projects. You’ll be able to work within a fast paced environment, with constant moving parts where you can assess against multiple frameworks and guidelines.

What you’ll be doing…
The Cyber Security Consultant will work within the GRC team underneath the Risk Manager, being one of the main consultants providing security advice and guidelines across the wider business. You’ll be able to consult on HLD and LLD for new architecture transformations (and existing legacy systems – fun!), create new policies to mitigate against cyber risk, advise internal users on security best practice and ensure that all strategies for Information Security within the business are compliant and as risk adverse as possible.

What we’re ideally looking for…
* A strong background within infrastructure (servers, networking), with cloud platforms (Azure, AWS, GCP), containerisation (Kubernetes, Docker) and API management. This doesn’t have to be a ‘hands on’ configuration knowledge, as long as you’ve got good experience with their functionalities and how to mitigate against risk this is fine.
* Experience of risk management and assessments.
* Experience with risk assessment methodology and guidelines (ISO27001, NIST, ISACA etc)
* Ability to provide guidance and risk assessments across architectural HLD and LLD.
* The ability to work across all areas of the business; from stakeholder interaction to technical collaboration.
* Ability to come up with innovative solutions to potential threats / risks to the business.

Our client are flexible on experience, obviously the more you have the better but if you see this role as the next step in your career feel free to reach out and apply; as long as you’ve got a passion for cyber security, a good base knowledge our client are happy to develop your skills further.

Next steps…
Apply, apply and apply, we’ll see how suitable you are and then get in touch to tell you more about the opportunity

Sign up for industry updates