Job Title: Cyber Security Consultant
We are seeking a skilled cyber security professional to join our team and drive our growth during an exciting expansion phase.
Key Responsibilities:
* Compliance & Security Framework Implementation: Assist clients in achieving and maintaining ISO 27001, SOC 2, and Cyber Essentials compliance.
* Conduct security risk assessments, gap analyses, and audits.
* Develop and implement security policies, procedures, and controls.
Additional Responsibilities:
* v CISO & Advisory Services: Provide virtual Chief Information Security Officer (v CISO) services to clients. Offer strategic security guidance and risk management recommendations. Develop security roadmaps and governance models.
* Penetration Testing & Security Assessments: Assist Pen Testing team with vulnerability assessments. Simulate cyberattacks to identify vulnerabilities and recommend remediation strategies. Work with clients to improve security controls based on test findings.
* Incident Response & Threat Management: Develop and implement incident response plans. Assist clients in investigating and mitigating security incidents. Provide recommendations to prevent future breaches.
* Security Awareness & Training: Deliver cyber security awareness training to client teams. Conduct phishing simulations and security workshops. Promote security best practices across client organisations.
* Technical & Compliance Documentation: Prepare and maintain security documentation, policies, and reports. Support clients with evidence collection for audits and certifications. Ensure alignment with regulatory and industry standards.
Requirements:
* Drive & Determination: You are motivated, proactive, and enjoy the challenge of consulting in an emerging market.
* Communication Skills: You can convey complex ideas simply, differentiating our services in a crowded market.
* Curiosity & Learning: An eagerness to learn about cybersecurity and data protection, with the ability to engage in conversations with IT decision-makers like CTOs, CIOs, and IT Managers.
* Tech-Savvy: Proven experience in cybersecurity consulting, risk management, or compliance. Strong understanding of ISO 27001, SOC 2, and Cyber Essentials frameworks. Hands-on experience with penetration testing, vulnerability assessments, and security tools. Familiarity with regulatory requirements such as GDPR, NIST, and CIS Controls.
* Ability to develop and implement security policies and procedures. Experience with incident response planning and security operations. Strong communication and client management skills. Relevant certifications preferred (e.g., CISSP, CISM, CEH, OSCP, ISO27001 Lead Auditor/Implementer).
Why Join Us?
* Growth Opportunity: You will have a chance to contribute to our growth and receive a rewarding compensation plan, including equity.
* Impact: Be a key part of an organisation that values innovation and appreciates different viewpoints. Your ideas will shape the company's future.
* Collaboration: Work with a team of passionate people who value hard work, open dialogue, and accountability.
* Flexible Environment: The early-stage, dynamic environment means you will have the freedom to shape your role and approach.