Cyber Security Consultant (Governance)

Cyber Security Consultant (Governance)

About us…

We’re actively looking for a Cyber Security Consultant (Governance) to come and join our brilliant team of IT Consultants. This is a fantastic opportunity to join a professional team and to work in a forward thinking and stimulating working environment. RightCue’s aspiration is to develop and grow its team by attracting and recruiting the best, ensuring its readiness for future, where the standards set are consistently high and client and employee rewards are great.

About you…

Communication and collaboration are central to effective employee performance here at RightCue. Having the right technical skills and qualifications is undoubtedly important, however, how you interact, engage and build trusting sustainable relationships is what will set us apart here at RightCue.  This is a client-facing position and client relations will therefore need to have been central to your career path to date.   As with all client-facing positions, there will be the occasional need for you to travel across the UK and potentially abroad. You will therefore need a valid UK driving licence and due to the sensitive nature of our business, you will be expected to maintain the highest level of data security and confidentiality. The position requires flexibility to work across multiple time-zones.

Key responsibilities…

  • Undertaking customer consultancy/projects, such as ISO 27001 implementation, Cyber Security Reviews, Risk Assessments,
  • Undertake risk assessments to an external standard with knowledge of multiple platforms and technologies, including cloud solutions
  • Ability to perform supplier assessment/cloud service assessments as per RightCue methodology
  • Advise on implementing established governance processes and frameworks to bring the best possible value-add solutions to clients
  • Implement ISO 27001 standard, CSA, CCM, NIST and other equivalent standards
  • Implement IASME Governance Standard, Data Protection policies and procedures
  • Conduct Internal audits including but not limited to data GDPR audits
  • Performing business impact assessments, threat modelling and risk assessments
  • Performing security reviews of a range of different types of customer environments, i.e., on-premises, colocation/data centre or cloud
  • Understand clients’ business and write bespoke security policies and procedures
  • Perform data gathering interviews to assist with the preparation of physical, software, information and PII asset registers
  • Assist clients with management reports, implementation of controls, certification audits
  • Escalate project delays, scope deviations, and projects risks to Team Leads
  • Resolve any areas of concern raised by the client
  • Ensure written reports and other technical information are prepared in a pertinent, concise and accurate manner for distribution to clients
  • Provide proactive advice to clients on good security practices

Technical skills…

  • Good knowledge of security management systems, data protection, governance & international standards
  • Broad understanding of the management of cybersecurity risk, tools, and techniques
  • Ability to gather data, compile information, and prepare professional reports and presentations
  • Experience in working with suppliers on data security, internal reviews/audits
  • Liaising with businesses/regulators to resolve any issues of non-compliance
  • Knowledge of IT networks, anti-malware technologies, security concepts, encryption, access controls and configuration management
  • 1+ years’ delivering ISO 27001 work or information security consulting or in-house information security role
  • 2+ years of client-facing experience in cyber security governance
  • 3+ years of information technology and network security experience

Qualifications…

You will ideally have or be studying towards one or more of the following or equivalent qualifications:

  • MSc Cybersecurity, CRISC, ISO 27001 Lead Auditor/Lead Implementor, CCSK, CIPP/E

What you will get…

Working alongside highly experienced consultants, as part of a small team, will give you the opportunity to get involved, develop essential business and leadership skills.  We value diversity and are committed to providing equal opportunities for all our employees and importantly, we focus on what you achieve, not how long you spend trying to achieve it.

  • Comparative salary
  • Hybrid working
  • Flexibility to manage your own diary
  • Free on-site car parking (when required)
  • Home office set up support
  • MacBook Pro / iPhone
  • 25 paid holidays + 8 bank holidays
  • Pension scheme
  • Employee Assistance Program (EAP)
  • Company credit/debit card (role specific)
  • Growth opportunities – apprenticeships, training, professional qualifications/memberships
  • Study leave (when required)
  • Work/life balance

If you would like to apply for this position, please email your latest CV to HR@rightcue.com

By sending your CV to the above mailbox you consent to us collecting and storing your CV/Application and contact details. We will hold this information securely and process it for recruitment purposes only. Please refer to our Privacy Statement for more details on our compliance with GDPR and Data Protection.