Job Description

Job description

An exciting opportunity has arisen for an experienced Senior Governance, Risk & Compliance Consultant to join a fantastic, hard working team on the West Sussex Coast.

As a consultant, you’ll be delivering various consultancy services to our customers, including ISO 27001 gap analysis & consultancy, cyber risk assessments, security posture reviews, vCISO services and Cyber Essentials assessments.

This is an exciting opportunity to be truly valued as a consultant, as you help shape the way we do things and provide excellent consultancy services to our customers and partners.

The role will be predominantly home-based but there may customer visits every once in a while. It would also be great to see you in our south coast office every so often.

The role will include delivering the following services to our customers and wider partner network:

ISO 27001 Implementation and Auditing Security Posture Reviews Policy Authoring & Review Threat Analysis Risk Assessments CIS hardening review of cloud services, such as Microsoft Azure, Amazon AWS & Microsoft 365 vCISO & DPO services GDPR Gap Analysis & Consultancy Security Awareness Training Cyber Essentials Assessments Adhoc Cybersecurity Consultancy

You will also be responsible for working with our internal team to ensure that Team remains compliant with our own ISO 27001 certification. This will involve carrying out our own internal audits and ensuring that our ISO management system is running smoothly.

Successful candidates for this role will have the following :

Relevant and current industry-recognised certification (such as CISSP, CISM or ISO27001 Lead Auditor / Implementer) At least 5 years experience in a customer-facing GRC consultancy role Excellent written English skills Able to communicate with customers and stakeholders on all levels – from developers and systems administrators through to less-technical senior board members Able to work well on your own but also as part of the wider consultancy team on larger engagements Must currently hold or be able to obtain UK Government SC clearance Ability to manage multiple jobs for multiple customers concurrently Highly motivated team player with a “can do” attitude Good understanding of Amazon AWS, Microsoft Azure and Microsoft 365 An understanding of common security threats, vulnerabilities and common technical security controls and concepts

Experience in any of the following areas is also highly beneficial to be selected for this role:

Operational Technology (OT) / SCADA environments NHS Data Security and Protection Toolkit (DSPT) GDPR NIST 800-53 controls CIS hardening guides and controls NIS directive PCI-DSS IEC 62443 standard HSE OG-86 controls

This role does not only come with a competitive salary but a great list of benefits:

Lead introduction bonuses Profit share scheme (after the first 12 months of employment) Company pension Holiday entitlement that increases with employment duration Top-spec Dell XPS laptop Regular team building The best locally roasted, micro-lot coffee you’ve ever tasted in any office ! Free soft drinks in the office. Canine-friendly office.