Cyber Security Consultant (Operations)

Oliver James are partnered with a leading insurance business looking to hire a Cyber Security consultant.

The business is embarking on an exciting digital transformation programme and to support this, the Cyber Security function is looking to appoint a Cyber Security Consultant. The purpose of this role is to lead on our operations pillar, focusing on streamlining our security tooling, developing efficient vulnerability management processes and maturing our SOC capabilities.

Working with the technology function and wider business, the Cyber Security Consultant will conduct threat assessments and translate that into operational security requirements. By understanding our current estate and IT strategy, the role holder will ensure the SOC has the necessary visibility to detect and respond to potential incidents. As well as responsive capabilities, the Cyber Security Consultant will work to develop our preventative measures.

Main Responsibilities:

• Working with external suppliers to mature security operations, testing on a regular basis that the processes are operating effectively.
• Leading the SOC Maturity pillar of the Cyber Security strategy and ensuring progress is made in line with business development.
• Regular MI and reports on the current risk and vulnerability position of the business while managing a programme of work to reduce the risk position.
• Prioritisation and tracking of vulnerabilities and issues, ensuring a risk-based approach is taken.
• Management and maturing of security tooling (e.g. vulnerability scanner, DLP tools).
• Review of current tooling capabilities with recommendations on how to develop more efficient and streamlined processes.
• Management of annual security testing programme with planning and management of remedial work through to closure.
• Develop and regularly test cyber incident plans with key suppliers and internal stakeholders.
• Continual development of playbooks with key suppliers.
• Management of third-party vendors.

Skills and Experience:

• Proven experience in a similar consultant or SOC manager role within a mid/large sized organisation, preferably in the Financial Services sector.
• Cyber security subject matter expert with a focus on security operations, vulnerability management and incident response.
• Extensive experience of maturing SOC processes, onboarding and tuning security tools.
• Experience of streamlining and prioritising vulnerability management processes and issues.
• Demonstrable experience of developing and managing cyber incident response plans.
• Extensive experience of consulting on projects, building in security requirements and ensuring services go-live with minimal security risk.
• Experience of onboarding new services in security operations.
• Good understanding of new and emerging cyber threats and technologies.
• Knowledge of relevant legislation and relations within the UK Insurance and Financial Services marker.

If you are interested in hearing more about this role then please apply below. You have to live and have the right to work in the UK to apply.