Information Security Consultant

Leeds – Onsite

Up to £70k

Key Duties and Responsibilities

Assist with security incident management and response activities

General day-to-day support on managing and responding to security alerts from systems and end users

Perform daily, weekly, and monthly security checks, reconciliation and compliance checks and investigate exceptions 

Completing client security requirement questionnaires and support the bidding process

Identify and raise awareness of security risks

Develop and enhance security policies, processes, procedures, and technical controls to strengthen security capabilities and resilience to cyber threats

Take a proactive role in identifying security risks, mitigations, and opportunities to strengthen resilience to cyber-attacks and security incidents

Participate in the design and implementation of systems and applications 

Develop user and technical training guides 

Maintain and manage the IT Risk register 

Test DR plans and capabilities to ensure they work as designed, identifying gaps and lessons learnt and work with the business to drive continual development and enhancement

Technical Requirements :

Two years hands-on experience of security and/or infrastructure within an enterprise environment

Exposure to enterprise information security standards including Cyber Essentials, ISO 27001, 27002 etc. Data Protection Act and the General Data Protection Regulation

Microsoft O365 Security solutions; Networking; Security operations; Vulnerability Management; Security Auditing

Good understanding of security testing principles, including experience of vulnerability scanning, identifying, resolving, and reporting risks

Experience of formal document creation, such as the creation of reports or procedures

Detailed knowledge of:

Microsoft O365 environment

Threat Intelligence analysis and best practice

Security Incident Response processes, procedures, and best practices

Disaster Recovery and Business Continuity principles 

Event and log analysis