Security Consultant

All Security Consultants

• Perform consultancy and audit/assessment activities during delivery of customer projects across the range of the Cyber Security GRC services, in line with both employee capabilities and business need

• Interact professionally with customers across a variety of channels, ensuring timely progression of projects and the ongoing development of longstanding trust-based customer relationships

• Provide ongoing support and guidance to customers to help them achieve their goals and ambitions

• Support Claranet’s efforts to build new and update existing service offerings

• Participate in customer calls as required to support both Claranet and customer project activities such as, but not limited to; pre-sales/sales calls, customer support calls, audit/assessment calls, Q&A (question and answer) calls to support audit/assessments, perform remote assessment activities

• As necessary, create and maintain documentation supporting the delivery of Cyber Security GRC services

• Where appropriate, provide mentoring and / or coaching to GRC colleagues of the same level or below

• Keep up with industry trends, emerging threats, and technological advancements to effectively address new challenges and technologies

• Perform QA (Quality Assurance) reviews of reports produced by the Cyber Security function’s GRC Team

• Where necessary, assist with the development and growth of the Cyber Security function’s such as, product / service improvement or creating cutting-edge training material for internal and external delivery

• Fulfil any re-certification requirements and CPE (Continuing Professional. Education) obligations

Teams to collaborate with

• Customer Experience and Managed Services – ensure we are consistently providing the best service to our customers, proactively monitoring their needs, and integrating their feedback into our future portfolio and propositions.

• Portfolio, Alliances & Technology Practices – support efforts to embed GRC services into customer solutions, Claranet services.

• Finance & Corporate Development – submission of any work-related expenses.

Behavioural competencies – organisational and behavioural fit

• Customer facing, able to represent Claranet confidently and professionally

• Willing to travel to deliver onsite work as required

• Ability to identify improvements through inquisitiveness, share ideas constructively and work collaboratively with a variety of colleagues to deploy change

• Self-motivated and able to work both independently as well as part of a dynamic team

• Accountable by delivering on promises and pursuing growth and personal improvement where developmental feedback is received

• Clear and consistent communication skills across a variety of channels, fostering productive and strong working relationships

• Good numeracy and organisational skills, with attention to detail

• Positive, respectful to others, and enthusiastic

Critical competencies – technical fit

• Good understanding of at least one audit framework; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, Microsoft 365 Certification, etc.

• Ability to deliver, without supervision/support, at least one Cyber Practice GRC service

• Aptitude for understanding, interpreting, and applying objective standards to specific responses

• Working under pressure of varying deadlines and priorities, and managing workload accordingly

• Problem-solving, helping others to understand complex ideas

• Providing guidance in customer-facing situations, tailoring advice to each individual recipient

• Good knowledge and understanding of security and networking technologies

• Ability to quickly learn and understand new skills and technologies specific to the Cyber Security industry

• Take own initiative to expand information security knowledge

• Ability to write concise, accurate and timely reports

Desirable competencies

• Exposure to multiple industry audit/compliance frameworks; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, etc.

• Exposure to Amazon AWS, Microsoft Azure or Google GCPs cloud platforms

• Data Privacy Experience, e.g. GDPR, DPA2018

• Full UK driving license (for UK recruitment)