Technology Security Consultant Job In South East, England

Our clients systems need to meet both regulatory, legal and customer security requirements; they must also be designed to provide the right level of security. Working alongside others, you will be the specialist responsible for the development and rollout of security standards and policies for IT applications and development. You will contribute to the overall Information Assurance security strategy. You will perform technical security assessments of these areas, audits and present your findings to the security team and others in the business. Where necessary you will engage with third-parties to support in the work and to recommend additional security technologies and systems to deliver the required protection. You will be responsible for the prioritisation of any remedial work, driving security improvements across the business. It will probably also involve training non-security staff on risks and sensible approaches for their mitigation. You will be required to ensure that the security standards are followed by the subcontractors, using contractual controls, auditing and personal relationships to ensure security practices are followed. You may also be required to provide incident support. Required Skills • Excellent understanding of development, application, database and OS security issues. • TCP/IP • Understanding of web security issues, cross site scripting, SQL injection etc. • Understanding of cryptography, authentication etc. • Understanding of Windows Active Directory security architecture and issues. • Testing of host and application security • Excellent written and verbal communication skills, including development of policy and standards. • Understanding of security risks, vulnerabilities • Windows, UNIX/Linux, AD. • Solaris • A working knowledge of standard security technologies such as Firewalls, SEM platforms, logging. Desired skills and experience • Ideally you will have had experience working in an international organisation and handling issues that cross cultural boundaries. • UK Government security clearance • PRINCE based project management methodologies • ISO 27001 (to lead auditor / implementer standard) • CISSP / CISM • CLAS

Our clients systems need to meet both regulatory, legal and customer security requirements; they must also be designed to provide the right level of security. Working alongside others, you will be the specialist responsible for the development and rollout of security standards and policies for IT applications and development. You will contribute to the overall Information Assurance security strategy.

You will perform technical security assessments of these areas, audits and present your findings to the security team and others in the business. Where necessary you will engage with third-parties to support in the work and to recommend additional security technologies and systems to deliver the required protection.

You will be responsible for the prioritisation of any remedial work, driving security improvements across the business. It will probably also involve training non-security staff on risks and sensible approaches for their mitigation.

You will be required to ensure that the security standards are followed by the subcontractors, using contractual controls, auditing and personal relationships to ensure security practices are followed.

You may also be required to provide incident support.

Required Skills

• Excellent understanding of development, application, database and OS security issues.
• TCP/IP
• Understanding of web security issues, cross site scripting, SQL injection etc.
• Understanding of cryptography, authentication etc.
• Understanding of Windows Active Directory security architecture and issues.
• Testing of host and application security
• Excellent written and verbal communication skills, including development of policy and standards.
• Understanding of security risks, vulnerabilities
• Windows, UNIX/Linux, AD.
• Solaris
• A working knowledge of standard security technologies such as Firewalls, SEM platforms, logging.

Desired skills and experience

• Ideally you will have had experience working in an international organisation and handling issues that cross cultural boundaries.
• UK Government security clearance
• PRINCE based project management methodologies
• ISO 27001 (to lead auditor / implementer standard)
• CISSP / CISM
• CLAS

Technology Security Consultant

You may also like

The CISO Journey in 2024: Looking at the Year Ahead

Interview: Moving Jobs in the Cyber Vendor Market

Accenture to Create 3000 Tech and Cyber Jobs in the UK

US Cybersecurity Firm Opens New Belfast Office

IT Workers Fear Becoming Obsolete in Cyber Roles

What’s hot on Infosecurity Magazine?

CISA Urges Immediate Credential Reset After Sisense Breach

Police Swoop on €645m Cannabis Investment Fraud Gang

How to Backup and Restore Database in SQL Server

Top 10 Cyber-Attacks of 2023

How to Open and View OST Files Without Outlook

New Android Espionage Campaign Spotted in India and Pakistan

Why Identity Management is Key in a Cyber Resilience Strategy

US Data Breach Reports Surge 90% Annually in Q1

Banning Ransomware Payments Will Do More Harm Than Good

Palo Alto Networks Warns About Critical Zero-Day in PAN-OS

Famous YouTube Channels Hacked to Distribute Infostealers

Hackers Use Malware to Hunt Software Vulnerabilities

Is MFA Enough? Strategies for Next-Level Identity Security in 2024

Beyond Passwords: Securing the Digital Age with MFA, 2FA, and Passwordless Authentication

Disinformation Defense: Protecting Businesses from the New Wave of AI-Powered Cyber Threats

Bouncing Back: Building Organizational Resilience in the Face of Cyber-Attack

Understand and Combat the Top Healthcare Cloud Threats Today

Phishing, Impersonation, and Beyond: CISO Insights on 2023-2024 External Threats

Infosecurity Magazine Spring Online Summit 2024: Day One

Infosecurity Magazine Spring Online Summit 2024: Day Two

Russia’s Midnight Blizzard Accesses Microsoft Source Code

I-Soon GitHub Leak: What Cyber Experts Learned About Chinese Cyber Espionage

LockBit Takedown: What You Need to Know about Operation Cronos

Women in Cybersecurity at Infosecurity Europe 2024