Principal Security Consultant (1-year Fixed Term) pageis loaded Principal Security Consultant (1-year Fixed Term) Applylocations Cambridge, United Kingdom London Cannon Street time typeFull time posted on Posted 14 Days Ago job requisition id R010568AVEVA is creating software trusted by over 90% of leadingindustrial companies. Job Title : Principal Security ConsultantLocation: Cambridge or London, United Kingdom Employment Type:Full-time, 1-year Fixed Term The job AVEVA is a global leader inindustrial software, driving digital transformation andsustainability. By connecting the power of information andartificial intelligence with human insight, AVEVA enables teams touse their data to unlock new value. We call this PerformanceIntelligence. AVEVA’s comprehensive portfolio enables more than20,000 industrial enterprises to engineer smarter, operate betterand drive sustainable efficiency. AVEVA supports customers througha trusted ecosystem that includes 5,500 partners and 5,700certified developers around the world. The company is headquarteredin Cambridge, UK, with over 6,500 employees and ninety offices inover forty countries. Learn more atwww.aveva.com. We take pridein our core values and the diversity of our people, valuing theunique experience and expertise that people from diversebackgrounds bring to our business. At AVEVA, we are all aboutLimitless possibilities. Are you? The Principal Security Consultantis a 1-year fixed-term employee position, critical role in shapingand standing-up AVEVA’s 2nd Line of Defence Security consultancycapabilities and services. This role will be responsible forproviding insightful knowledge and actionable recommendations toachieve AVEVA’s target operating model for security and increasethe maturity of existing processes and systems. One area of focusof this 12 month work package is to improve transparency ofsecurity operations and compliance to customers. We will beimproving our Trust Centre, and streamlining security engagement oncustomer contracts. The post holder will be expected to quicklyintegrate into the team, proactively engage with stakeholdersacross the business, from technical SME’s to business leadership.They will need to work independently and able to prioritise theirtime across multiple projects and engagements. Key responsibilities- Implementation of Security Policy & Standards. Providesubject matter expert knowledge and support on the developingpolicy, standards, and exemption services to enable controls andsupporting control practices to be embedded and optimised acrossthe organisation. Includes optimisation of underpinning risk andcontrol indicators. - Implementation of Security Risk Management& Assurance. Provide subject matter expert knowledge ondeveloping security risk management and risk assurance servicesthat enable effective, and data driven risk management andreporting across operations. This includes the capability tomonitor and report effectiveness of risk management within theproduct development lifecycle and supply chain. - Ability to Gatherand Review Evidence For Compliance. Complete discoveryinvestigations to demonstrate compliance to regulations, standardsand customer requirements and present evidence in a consumableformat for customers, regulators etc. - Implementation of SecurityControl Systems. Provide subject matter expert knowledge tobusiness stakeholders to enable adoption, adaption, andoptimisation of security controls across the organisation. Thisincludes the controls used within the product development lifecycleand supply chain. - Stakeholder Engagement. Build and maintaintrusted relationships with stakeholders to embed security riskpractices into operational activities. This includes providingguidance and thought leadership on risk best practice and assuranceto technical and non-technical stakeholders. Essential requirements- Experience . Preferable 7+ years relevant work experience insecurity governance, risk, and compliance with at least 3 years ofworking as a senior expert or manager of a significant department.Experience of fulfilling similar role in a software publishing orinternet business is preferrable. - Governance. Significantexperience in developing, implementing, and optimising securitypolicies, standards, and control-sets to enable effective adaptionand adoption across organisational departments and teams. - RiskManagement and Assurance. Extensive experience of understanding ofusing threat, security control performance and business operationsto independently assess residual security risk position to the endcustomer based on business processes and practices includingproduct development lifecycle and supply chain. - RegulatoryCompliance. Significant experience of working within a regulatedenvironment and advising others on the principal requirements ofmajor legislation and regulations relevant to security, and thelegal and regulatory instruments relevant to the role. Experienceof responding to new regulations e.g. NIS2. Knowledge ofcross-border regulations, such as GDPR and EU Data Privacy rules.Desired skills - Organisational Skills. Highly skilled in managingmultiple tasks within set deadlines whilst managing expectations ofinvested parties - Communication Skills. Excellent verbal andwritten communication skills, with the ability to convey complexinformation clearly and concisely to diverse audiences. Ability tocommunicate effectively with technical and non-technicalstakeholders. - Decision making. Highly skilled in tacticaldecision-making with organisational impact. - Problem-solving .Able to address day-to-day challenges quickly with a focus onoperational solutions. Highly skilled at deconstructing largecomplex problems into solutions that can be easily understood andexecuted by business and digital teams. Digital Security at AVEVAOur Digital Security team is responsible for protecting AVEVA’sdigital assets and keeping the company’s data and IP secure. We’realso playing a critical role in AVEVA’s move to the cloud. As cyberthreats grow and more and more data moves into the cloud, theimportance of our role is only going to grow. If you’re acollaborative problem solver that’s passionate about cybersecurity,you’ll find fulfilment and opportunity in our team. Find out more:https://www.aveva.com/en/about/careers/ UK Benefits include:Flexible benefits fund, emergency leave days, adoption leave, 28days annual leave (plus bank holidays), pension, life cover,private medical insurance, parental leave, education assistanceprogram. It’s possible we’re hiring for this position in multiplecountries, in which case the above benefits apply to the primarylocation. Specific benefits vary by country, but our packages aresimilarly comprehensive. Find out more:aveva.com/en/about/careers/benefits/ Hybrid working By default,employees are expected to be in their local AVEVA office three daysa week, but some positions are fully office-based. Roles supportingparticular customers or markets are sometimes remote. Hiringprocess Interested? Great! Get started by submitting your coverletter and CV through our application portal. AVEVA is committed torecruiting and retaining people with disabilities. Please let usknow in advance if you need reasonable support during yourapplication process. Find out more:aveva.com/en/about/careers/hiring-process About AVEVA AVEVA is aglobal leader in industrial software with more than 6,500 employeesin over 40 countries. Our cutting-edge solutions are used bythousands of enterprises to deliver the essentials of life – suchas energy, infrastructure, chemicals, and minerals – safely,efficiently, and more sustainably. We are committed to embeddingsustainability and inclusion into our operations, our culture, andour core business strategy. Learn more about how we are progressingagainst our ambitious 2030 targets:sustainability-report.aveva.com/ Find out more:aveva.com/en/about/careers/ AVEVA requires all successfulapplicants to undergo and pass a drug screening and comprehensivebackground check before they start employment. Background checkswill be conducted in accordance with local laws and may, subject tothose laws, include proof of educational attainment, employmenthistory verification, proof of work authorization, criminalrecords, identity verification, credit check. Certain positionsdealing with sensitive and/or third-party personal data may involveadditional background check criteria. AVEVA is an Equal OpportunityEmployer. We are committed to being an exemplary employer with aninclusive culture, developing a workplace environment where all ouremployees are treated with dignity and respect. We value diversityand the expertise that people from different backgrounds bring toour business. AVEVA provides reasonable accommodation to applicantswith disabilities where appropriate. If you need reasonableaccommodation for any part of the application and hiring process,please notify your recruiter. Determinations on requests forreasonable accommodation will be made on a case-by-case basis.Similar Jobs (2) Principal Specialist, Security GRC (1-year FixedTerm) locations 2 Locations time type Full time posted on Posted 7Days Ago Security Change Manager (1-year Fixed Term) locations 2Locations time type Full time posted on Posted 14 Days Ago AVEVA isa global leader in industrial software. Our cutting-edge solutionsare used by thousands of enterprises to deliver the essentials oflife – such as energy, infrastructure, chemicals and minerals –safely, efficiently and more sustainably. We’re the first softwarebusiness in the world to have our sustainability targets validatedby the SBTi, and we’ve been recognized for the transparency andambition of our commitment to diversity, equity, and inclusion.We’ve also recently been named as one of the world’s mostinnovative companies. If you’re a curious and collaborative personwho wants to make a big impact through technology, then we want tohear from you! Find out more at AVEVA Careers .#J-18808-Ljbffr
