Information Security Consultant
Job Description
Information Security Consultant
Leeds – Onsite
Up to £70k
Key Duties and Responsibilities
▪ Assist with security incident management and response activities
▪ General day-to-day support on managing and responding to security alerts from systems and end users
▪ Perform daily, weekly, and monthly security checks, reconciliation and compliance checks and investigate exceptions
▪ Completing client security requirement questionnaires and support the bidding process
▪ Identify and raise awareness of security risks
▪ Develop and enhance security policies, processes, procedures, and technical controls to strengthen security capabilities and resilience to cyber threats
▪ Take a proactive role in identifying security risks, mitigations, and opportunities to strengthen resilience to cyber-attacks and security incidents
▪ Participate in the design and implementation of systems and applications
▪ Develop user and technical training guides
▪ Maintain and manage the IT Risk register
▪ Test DR plans and capabilities to ensure they work as designed, identifying gaps and lessons learnt and work with the business to drive continual development and enhancement
Technical Requirements :
▪ Two years hands-on experience of security and/or infrastructure within an enterprise environment
▪ Exposure to enterprise information security standards including Cyber Essentials, ISO 27001, 27002 etc. Data Protection Act and the General Data Protection Regulation
▪ Microsoft O365 Security solutions; Networking; Security operations; Vulnerability Management; Security Auditing
▪ Good understanding of security testing principles, including experience of vulnerability scanning, identifying, resolving, and reporting risks
▪ Experience of formal document creation, such as the creation of reports or procedures
Detailed knowledge of:
▪ Microsoft O365 environment
▪ Threat Intelligence analysis and best practice
▪ Security Incident Response processes, procedures, and best practices
▪ Disaster Recovery and Business Continuity principles
▪ Event and log analysis
