Senior Security Consultant - CISO Services
Birmingham, GB, B37 7ES
LRQA
We help businesses evolve by connecting them with tomorrow’s thinking, today.About LRQA Nettitude
At LRQA Nettitude our focus has always been on excellence in cyber security. We have teams that offer world class services in red teaming, penetration testing, threat intelligence, research and development, detection and response, governance, risk, and compliance, and plenty more. Our business is global and so are our clients. We work closely with central banks, central and local government, critical national infrastructure, large retailers, and plenty more besides! #LI-Nettitude
We’re an award winning provider of cyber security services and we’re are at a very exciting stage of development. We are looking for the right people to join us as we embrace the challenges thrown up by the advancements within the IT industry and within the threats faced. Nettitude will be at the forefront of this arena and we want to seek the right people to join the team and make it happen.
You can find out more about us at www.nettitude.com.
The role
The Senior Consultant role, within the CISO Services team, at LRQA Nettitude is a unique opportunity for a professional with a strong technical and business focus. As a key contributor, you will provide advice, consulting, and coaching on CISO environment issues. While leading on initiatives, you will also ensure effective project management and program oversight.
What you’ll be doing in your role
In your role you will:
- Lead and support client CISO service engagements
- Contribute to board level briefings on status and future planning
- Conduct security benchmarking reviews against standards such as NCSC 10 Steps to Cyber Security, NIST CSF, and CIS controls
- Perform gap analyses, providing strategic and tactical recommendations for security maturity and resilience
- Assist clients in implementing Information Security Management Systems and achieving/maintaining security certifications
- Conduct risk assessments, create risk models against ISO27001 and NIST 800-38
- Utilise technical understanding of threats and vulnerabilities to implement a vulnerability management program
- Create third-party risk management and audit programs for clients, building necessary risk models
Key Skills
The successful candidate will have experience and skills including:
- Personal Competencies:
-
- Degree-level education in a relevant technical field
- Proven consultancy experience or internal experience leading a cybersecurity function
- Demonstrable experience in risk management – assessment, treatment, and remediation
- Innovative and creative thinker with the ability to provide on-the-spot solutions
- Ability to deliver challenging messages with empathy and provide effective solutions
- Willingness to be hands-on and take responsibility to exceed client expectations
- Business Experience Credentials:
-
- CISSP/CISM (or equivalent) certification preferable
- Strong representation in information security governance forums, working groups, or change advisory boards
- Experience in ISO 27001/NIST CSF implementation and use of relevant standards to build control frameworks
- Oversight and strategic guidance in maintaining compliance regimes such as PCI DSS and GDPR
- Experience in cyber resilience planning, security operations, and managing security professionals
- Strong communication skills and the ability to build rapport with key stakeholders
Location
This role is remote. We can support working from across the UK. All applicants will require residence in the UK.
What we offer:
We offer you an exciting working environment with intellectual challenges, responsibility and high-level client interaction. An attractive remuneration package will be provided.
Apply?
Are you interested in this job? Apply now via the ‘apply’ button and upload your C.V. and cover letter. #LI-Nettitude
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: C CISM CISO CISSP Compliance GDPR Governance ISO 27001 NIST PCI DSS Pentesting Red team Risk assessment Risk management Threat intelligence Vulnerabilities Vulnerability management
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs