Cyber Security Consultant - GRC

Job Title Cyber Security Consultant - GRC

Reporting to Cyber & Technical Advisory

Job Type Full-Time

Start date: 24th June 2024- Due to the schedule of the initial 12-week program it is important you are available during this period. Please let us know of any planned days you would be unavailable for the first 3 months.

Location: No permanent workplace (This role may require regular UK travel and at times need you to stay away from home, which we can avoid and tailor to the person)

Methods Business and Digital Technology Limited

Our main mission is to improve and safeguard public and private services. We apply digital tools and ways of working to ensure our public services are centred around citizens and communities. We partner with a variety of clients both in public and private sectorto support the successful delivery of digital and technology services, working collaboratively to solve problems and support long term digital transformation.

At Methods we are not afraid of making mistakes; we aim to learn from them. We strive to create a supportive environment for colleagues, and we also aim to have fun.

We have established communities of practice that you will be able to join that create a supportive internal environment alongside your client work.

We are growing our teams across the company and would love to talk to you about becoming a part of Methods.

Your role

We are recruiting for a Cyber Security Consultant on a permanent basis, who will be part of our Cyber academy intake and will complete the course after 12 weeks with a view to obtaining cyber security qualifications.

You will be a Military leaver with significant transferable experience, and a willingness to train in technical assurance, delivering client-focused, risk reduction across digital services. You will understand risk, have managed resources, and can communicate complex issues with stakeholders.

The Cyber Security Consultant – Assurance (GRC) will have the following responsibilities:

• Research, and articulate security advice, at both business and technical levels, for new or existing problems, with the ability to justify and communicate directly to key customer stakeholders including senior management.
• Manage and deliver cyber security and cyber risk assignments across a variety of sectors and locations, including producing documentation, presentations, reports, recommendations, and assuring quality, for the work produced by team members and becoming the point of escalation for lower grade roles.
• Provide clients with guidance to understand and mitigate the impacts of Cyber Risk, balancing requirements, and appraising approaches for clients.
• Identify and applying security risk assessment, to recommend and implement common control frameworks.
• Investigate major breaches of security and recommend appropriate control improvements.
• Maintain awareness of key business and industry trends and understanding how they impact responses to cyber risk, with the contribution of the development of our team through training and coaching.
• Providing our clients with trusted advice, rooted in a pragmatic and agnostic understanding of their business situation and abilities, to help them navigate complex, risk-driven cyber issues.
• SC clearance previously held it, or able and willing to pass the process.
• Experience, skills or background in Cyber Security or Risk Management (IT or Physical).
• Passionate about quality and efficiency.
• Working as an effective member of a multi-disciplinary team.
• Previous transferable experience in managing teams.
• Excellent stakeholder management, presentation, and communication skills.
• A working knowledge of common commercial and open-source assessment tools and techniques.
• Ability to simplify technical results of assurance to a non-technical audience.
• Ability to train colleagues and clients.
• The ability to think laterally and 'outside the box'.
• Teamwork skills, to support colleagues and share experience.
• Proficient in creating documentation including policy writing and risk documentation.
• Knowledge of Compliance with Industry or Technical Standards/Frameworks.
• Knowledge of Governance and Audit approaches and methodologies.
• Knowledge of secure network Assurance and technical design.
• Knowledge of common scripting and programming languages.
• Knowledge of Cloud Assurance, either AWS and/or Azure.
• Knowledge of Serverless and Containerisation.
• Knowledge of API and modern Web Platforms.
• Relationship management with organizations to promote and mature assurance.

Additional skills and behaviours:

• Strong collaboration and team working.
• Good Communication skills.
• Genuine passion/commitment to improving public, private and defence services.
• An eager and tenacious approach to work.
• A creative approach to problem solving.
• Good listening and comprehension.
• Great stakeholder management.
• Working in an agile environment.
• Advocating for fully accessible and inclusive services.
• Taking a proactive approach to addressing environmental issues, embedding environmental responsibility in practices and standards, and encouraging clients to consider innovative solutions within the scope of work.
• Taking a proactive approach to diversity, equity and inclusion internally and with clients.

IMPORTANT

This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard (BPSS); details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview.

Benefits

Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy.

By joining us you can expect

• Freedom to develop and grow your skills and experience.
• Be part of exciting project work that is making a difference in society.
• Gain industry recognised certifications, including Microsoft specialist certifications.
• Strong, inspiring, and thought-provoking colleagues.
• A supportive and collaborative environment.

Benefits:

• Holiday: 25 days a year, plus bank holidays, with the option to buy 5 extra days each year.
• Pension: 4% employer contribution and 5% employee contribution.
• Discretionary bonus: based on company and personal performance.
• Life assurance: 4 times base salary
• Private medical insurance: non-contributory (partner and dependants included).
• Worldwide travel insurance: non-contributory (spouse and dependants included).
• Enhanced maternity and paternity leave after 18 months service.
• Wellness: 24/7 confidential employee assistance programme, including counselling.
• Social: Parties and social events, and commitment to charitable causes.
• Professional development: access to LinkedIn Learning, and discretionary training budget.
• Travel: season ticket loan, cycle to work scheme.
• Development access to LinkedIn Learning, a management development programme and training.
• Relevant Learning and Development time and investment according to business need.
• Wellness 24/7 Confidential employee assistance programme.