Vacancies-Information Security Consultant (1)


Our Vacancies

Information Security Consultant

Location: Bristol, Gloucester, Warrington Salary: Competitive + benefits

Industry: Security/Resilience

Job Description

We have an established team of information and system security professionals working on security-specific assignments, and multi-disciplinary assignments alongside our physical security, safety, systems and engineering colleagues. 

We are looking to expand our team in order to deliver our growing portfolio of projects.  The new roles will suit qualified professionals who are looking for the next step in their career, working on projects which frequently involve new and interesting technologies and system applications. 

We are looking for knowledgeable and conscientious individuals who are looking for a challenging role delivering real benefits to clients.  You will work on assignments which vary in nature and size, and will be expected to contribute to managing project delivery and winning new business.  Your key responsibilities will be:

  • Providing security advice and guidance to clients in respect of their existing systems, technical refresh plans and new projects;
  • Writing, reviewing and overseeing the production of system security policies and other documents to meet corporate or regulatory requirements;
  • Identifying and establishing good security governance principles, procedures and documents appropriate to clients' business environments and priorities;
  • Identifying and assessing information and system security risks and producing appropriate risk management and remediation plans.

Requirements

The following requirements are essential to the role:

  • Experience of carrying out security risk assessment and management assignments in complex environments;
  • Broad knowledge of HMG Information Assurance Policies, Standards and Guidelines including MOD-specific procedures such as JSP440;
  • CESG Certified Professional (CCP) at any level;
  • Hold or be willing and eligible to hold HMG Security Clearance;
  • Excellent written and verbal communication skills, including listening;
  • Ability to present technical arguments with clarity for a range of technical and non-technical readerships and audiences;
  • Ability to work to tight deadlines under pressure while managing clients' expectations and delivering high quality work;
  • Ability to work effectively on solo assignments, within multi-disciplinary teams and in a matrix organisation;
  • Ambition to maintain and enhance personal technical and consultancy skills.

The following requirements are desirable for the role:

  • A qualification such as Certified Information Systems Security Professional (CISSP);
  • Associate or Full Membership of a relevant recognised professional body such as the British Computer Society (BCS) or the Institute of Information Security Professionals (IISP);
  • Awareness of non-government security standards (e.g. the ISO27001 family) and codes of practice, including those relating to safety-critical and process control systems.
  • Knowledge and experience of industrial control system security, including safety-critical and safety-related systems;
  • Experience and understanding of security issues specific to UK regulated industries;
Apply for this position How to apply