Cyber Security Architect developing high - quality Cyber and IT security solutions for Webster Bank. Focused on formulating, designing, assessing security systems, and ensuring compliance across technology initiatives.
About the role
- Managing Consultant delivering information security consultancy specializing in GRC for LRQA clients. Driving client engagements with a focus on governance, risk, and compliance standards.
Responsibilities
- Deliver information security consultancy to LRQA clients, specialising in governance, risk and compliance (GRC).
- Drive engagements whilst supporting other members of the team with the ultimate aim of achieving excellent client satisfaction results.
- Provision of client support to achieve compliance/certification against recognised standards such as ISO 27001, the GDPR, NIST CSF and PCI DSS.
- Independently conducted ISO/IEC 27001:2022 audit activities.
- Provision of expert advice to clients on governance structures.
- Facilitation of information asset discovery workshops and engagements.
- Facilitation of risk assessment workshops and engagements.
- Delivery of business continuity scenario tabletop exercises.
- Delivery of external stakeholder training and awareness presentations.
- Mentor, coach, and guide team members to enhance their technical and consulting capabilities.
- Develop and deliver training programs on GRC, risk management, and information assurance best practices.
- Establish thought leadership by contributing to white papers, webinars, and conferences in the GRC space.
Requirements
- Degree level qualification in Computer Science, Computer Engineering, IT, Cyber Security, or a related field or 5 years experience working within an information security role.
- Minimum 2 years experience in delivering consultative engagements using well-known risk management and data security frameworks, standards, and methodologies.
- ISO 27001 Lead Auditor or Lead Implementer qualification.
- CISSP/CISM (or equivalent) certification preferable.
- Experience in ISO 27001/NIST CSF implementation and use of relevant standards to build control frameworks.
- Demonstrable experience communicating complex information security concepts to top level (C suite) management.
- Experience in cyber resilience planning, security operations, and managing security professionals.
- Strong communication skills and the ability to build rapport with key stakeholders.
- Experience in some or all of the following areas of information security: GDPR regulation, PCI DSS, CMMC, SOC 2, DORA, NIS 2 Directive, HIPAA / NHS DSPT / Healthcare regulation, Business Continuity, Supplier Management, Incident Management, Physical Security.
Benefits
- We are a people-focused, high-performing, high-trust professional services team.
- Opportunities to make a difference.
- Encourage all employees to challenge norms and empower them to get involved.
- Enjoy blogging or public speaking.
- Commit to getting involved in industry discussions.
- Time to attend conferences and get involved in the infosec community.
- Opportunities for professional development.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Leading technical excellence and innovation as Head of Data Protection for Barclays, ensuring robust data security and operational efficiency. Mentoring engineering teams and aligning strategy with business goals.
Senior Cybersecurity Engineer at MSIG - North America, designing and implementing cybersecurity solutions. Managing security infrastructure and collaborating with the Information Security Officer.
Security Risk Analyst focusing on Enterprise Security Risk Management for Xcel Energy. Collaborating on risk assessments and ensuring documentation aligns with industry standards.
IA
Conseiller juridique stratégique au sein des Services juridiques pour la protection des renseignements personnels au Canada. Fournissant des conseils stratégiques en matière de cybersécurité et réglementaire.
Cyber Security Manager leading the safeguarding of technology assets and data against threats at Barnet Council. Driving strategies, compliance, and risk management aligned with national standards.
Senior Cloud Security Engineer designing, implementing, and operating security capabilities for cloud environments with Lennar, a leading homebuilder.
Solution Train Engineer facilitating Information Security Agile Release Train processes for delivering solutions. Coaching teams while overseeing Program Increment sessions and managing risks and delivery flow.
Cloud and Security Engineer at Circuit Check responsible for architecting, implementing, and maintaining secure cloud infrastructure. Focused on hybrid cloud architecture and compliance frameworks to protect enterprise systems.
Supporting data privacy incident response processes as Cybersecurity Senior Analyst at financial services company. Engaging with various teams for documenting and mitigating privacy risks.