Senior Security Consultant

My client is a leading consultancy and is seeking a Senior Security Consultant to provide expert cybersecurity guidance and risk management services to a diverse client base. This role involves designing and implementing security solutions, conducting audits, and ensuring compliance with industry frameworks. You will engage with clients, manage multiple projects, and play a key role in shaping cyber security strategies.

Key Responsibilities:

• Lead and conduct Audits, security assessments, including ISO 27001, NIST, SOC 2, Cyber Essentials, and GDPR compliance reviews.
• Act as a trusted advisor, managing security frameworks, conducting gap analyses, and delivering risk assessments tailored to client needs.
• Serve as an interim Information Security Officer/Manager, guiding organisations through certification processes and policy development.
• Develop incident response plans, perform vulnerability assessments using tools like Nessus, and provide remediation guidance.
• Assess Microsoft 365, AWS, and Azure environments, identifying and mitigating security risks.
• Create security policies, lead tabletop exercises, and deliver security awareness training to improve organizational resilience.
• Evaluate network security, firewall configurations, and identity management solutions to enhance security postures.
• Support team members, contribute to business development, and oversee multiple client engagements.

Required Skills & Qualifications:

• Minimum 5+ years in cybersecurity consulting, security operations, or compliance auditing.
• Certifications: CISSP, CISM, or equivalent required. Additional certifications like CISA, CIPP/E, CIPM, or cloud security (AWS, Azure, CompTIA, CEH) are highly valued.
• Strong understanding of ISO 27001, NIST, SOC2, CIS18, DORA, NIS2, Cyber Essentials frameworks. Hands-on experience with Microsoft 365, AWS, and Azure security.
• Ability to translate complex security concepts for non-technical stakeholders, manage projects, and mentor junior staff.
• Strong analytical and problem-solving skills, with a proactive approach to risk identification and mitigation.

This is a fantastic opportunity for an experienced cybersecurity consultant to work in a dynamic and fast-paced environment, advising organizations on security best practices while driving impactful solutions.