Cyber Security Consultant - GRC
London, England, United Kingdom - Remote
Full Time Mid-level / Intermediate Clearance required USD 35K - 90K *
Methods
Delivering end-to-end business & technical solutions that are people-centred, safe, & designed for the futureJob Title Cyber Security Consultant - GRC
Reporting to Cyber & Technical Advisory
Job Type Full-Time
Start date: 24th June 2024- Due to the schedule of the initial 12-week program it is important you are available during this period. Please let us know of any planned days you would be unavailable for the first 3 months.
Location: No permanent workplace (This role may require regular UK travel and at times need you to stay away from home, which we can avoid and tailor to the person)
Methods Business and Digital Technology Limited
Our main mission is to improve and safeguard public and private services. We apply digital tools and ways of working to ensure our public services are centred around citizens and communities. We partner with a variety of clients both in public and private sectorto support the successful delivery of digital and technology services, working collaboratively to solve problems and support long term digital transformation.
At Methods we are not afraid of making mistakes; we aim to learn from them. We strive to create a supportive environment for colleagues, and we also aim to have fun.
We have established communities of practice that you will be able to join that create a supportive internal environment alongside your client work.
We are growing our teams across the company and would love to talk to you about becoming a part of Methods.
Your role
We are recruiting for a Cyber Security Consultant on a permanent basis, who will be part of our Cyber academy intake and will complete the course after 12 weeks with a view to obtaining cyber security qualifications.
You will be a Military leaver with significant transferable experience, and a willingness to train in technical assurance, delivering client-focused, risk reduction across digital services. You will understand risk, have managed resources, and can communicate complex issues with stakeholders.
The Cyber Security Consultant – Assurance (GRC) will have the following responsibilities:
- Research, and articulate security advice, at both business and technical levels, for new or existing problems, with the ability to justify and communicate directly to key customer stakeholders including senior management.
- Manage and deliver cyber security and cyber risk assignments across a variety of sectors and locations, including producing documentation, presentations, reports, recommendations, and assuring quality, for the work produced by team members and becoming the point of escalation for lower grade roles.
- Provide clients with guidance to understand and mitigate the impacts of Cyber Risk, balancing requirements, and appraising approaches for clients.
- Identify and applying security risk assessment, to recommend and implement common control frameworks.
- Investigate major breaches of security and recommend appropriate control improvements.
- Maintain awareness of key business and industry trends and understanding how they impact responses to cyber risk, with the contribution of the development of our team through training and coaching.
- Providing our clients with trusted advice, rooted in a pragmatic and agnostic understanding of their business situation and abilities, to help them navigate complex, risk-driven cyber issues.
- SC clearance previously held it, or able and willing to pass the process.
- Experience, skills or background in Cyber Security or Risk Management (IT or Physical).
- Passionate about quality and efficiency.
- Working as an effective member of a multi-disciplinary team.
- Previous transferable experience in managing teams.
- Excellent stakeholder management, presentation, and communication skills.
- A working knowledge of common commercial and open-source assessment tools and techniques.
- Ability to simplify technical results of assurance to a non-technical audience.
- Ability to train colleagues and clients.
- The ability to think laterally and 'outside the box'.
- Teamwork skills, to support colleagues and share experience.
- Proficient in creating documentation including policy writing and risk documentation.
- Knowledge of Compliance with Industry or Technical Standards/Frameworks.
- Knowledge of Governance and Audit approaches and methodologies.
- Knowledge of secure network Assurance and technical design.
- Knowledge of common scripting and programming languages.
- Knowledge of Cloud Assurance, either AWS and/or Azure.
- Knowledge of Serverless and Containerisation.
- Knowledge of API and modern Web Platforms.
- Relationship management with organizations to promote and mature assurance.
Additional skills and behaviours:
- Strong collaboration and team working.
- Good Communication skills.
- Genuine passion/commitment to improving public, private and defence services.
- An eager and tenacious approach to work.
- A creative approach to problem solving.
- Good listening and comprehension.
- Great stakeholder management.
- Working in an agile environment.
- Advocating for fully accessible and inclusive services.
- Taking a proactive approach to addressing environmental issues, embedding environmental responsibility in practices and standards, and encouraging clients to consider innovative solutions within the scope of work.
- Taking a proactive approach to diversity, equity and inclusion internally and with clients.
IMPORTANT
This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard (BPSS); details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview.
Benefits
Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy.
By joining us you can expect
- Freedom to develop and grow your skills and experience.
- Be part of exciting project work that is making a difference in society.
- Gain industry recognised certifications, including Microsoft specialist certifications.
- Strong, inspiring, and thought-provoking colleagues.
- A supportive and collaborative environment.
Benefits:
- Holiday: 25 days a year, plus bank holidays, with the option to buy 5 extra days each year.
- Pension: 4% employer contribution and 5% employee contribution.
- Discretionary bonus: based on company and personal performance.
- Life assurance: 4 times base salary
- Private medical insurance: non-contributory (partner and dependants included).
- Worldwide travel insurance: non-contributory (spouse and dependants included).
- Enhanced maternity and paternity leave after 18 months service.
- Wellness: 24/7 confidential employee assistance programme, including counselling.
- Social: Parties and social events, and commitment to charitable causes.
- Professional development: access to LinkedIn Learning, and discretionary training budget.
- Travel: season ticket loan, cycle to work scheme.
- Development access to LinkedIn Learning, a management development programme and training.
- Relevant Learning and Development time and investment according to business need.
- Wellness 24/7 Confidential employee assistance programme.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile APIs AWS Azure Clearance Cloud Compliance Governance Risk assessment Risk management Scripting Security Clearance
Perks/benefits: Career development Equity Health care Medical leave Parental leave Salary bonus Startup environment Team events Travel
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs