One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world’s most trusted organisations. We are the trusted partner for operators of essential services and provide end-to-end cyber security capabilities that help our clients overcome their security challenges, allowing them to operate safely and securely.
Bridewell holds the Gold level, Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly one team.
The Opportunity
By integrating Bridewell’s Cyber Security Consulting expertise with focused, hands-on training in Data Security and Data Protection, the Bridewell Academy equips candidates with the practical skills required to succeed in today’s cyber security landscape. This pathway combines structured learning, industry-recognised certifications, and real-world client delivery, ensuring candidates are fully prepared for careers in Data Loss Prevention (DLP), Data Privacy, and Microsoft Security technologies.
In the first six months, you will build a strong operational foundation through structured onboarding and immersive exposure to live client environments. Following an initial period shadowing DLP projects, you will gain hands-on experience in alert triage, incident analysis, and response within Microsoft Purview and Defender. From month two, you will transition into full-time client delivery, contributing to alert and incident management activities while developing the capability to accurately triage high volumes of alerts daily. Alongside this, you will complete Microsoft Applied Skills training in Information Protection, Data Loss Prevention, eDiscovery, Retention, and Communication Compliance, reinforcing your technical expertise.
Between six and twelve months, you will deepen your delivery capability, continuing to operate in a fully billable role focused on alert and incident management, stakeholder communications, and DLP analysis. You will also begin to develop a broader understanding of how DLP intersects with Data Privacy and Security, working alongside the Data Privacy team to support incident escalation and embed privacy considerations into your approach. During this phase, you will complete the CISMP certification, strengthening your knowledge of core information security principles.
From twelve to eighteen months, your role will evolve to include more advanced responsibilities across both technical delivery and consulting. In addition to managing alerts and incidents, you will contribute to proactive DLP analysis, policy configuration and optimisation within Microsoft Purview, and continuous improvement initiatives. You will also begin to engage in wider consulting activities such as supporting discovery workshops, drafting client communications, and delivering training. Completion of Core Consulting Training will further develop your client-facing and stakeholder management skills, while achieving the SC-401 Microsoft Information Protection Administrator certification will validate your technical expertise.
By the end of the programme, you will have developed into a well-rounded consultant, combining strong technical capability in DLP and Microsoft Security technologies with practical client delivery experience and core consulting skills, culminating in graduation from the Bridewell Academy.
Responsibilities
- Triage and Investigate Data Loss and Insider Risk alerts using Microsoft Purview and Defender.
- Support with regular reporting to Client, identifying areas for continuous improvement, and management of KPI's.
- Support data incident and breach investigations, assessments, and escalations.
- Engage with client staff through communications, to support positive data handling practices.
- Facilitate the transition of Purview projects from Purview Engineers to the Managed Service.
- Assist with documentation of workflows and processes for triaging, investigation and escalation of Alerts and Incidents using Microsoft Purview and Defender.
- Provide basic support and advice on data security and protection matters.
- Contribute to preparing and delivering training, awareness and communication programs.
- Support the identification and mitigation of risks and opportunities for fine-tuning.
- Stay updated on privacy and Microsoft Purview requirements and changes through research and attending relevant conferences and training days.
- Assist Senior Lead and Principal Consultants with project delivery.
- Help with business development tasks, such as creating blogs, marketing materials, and supporting tenders and proposals.
:quality(80))
:quality(80))
:quality(80))