Job DescriptionJob description An exciting opportunity has arisen for an experienced Senior Governance, Risk & Compliance Consultant to join a fantastic, hard working team on the West Sussex Coast.As a consultant, you'll be delivering various consultancy services to our customers, including ISO 27001 gap analysis & consultancy, cyber risk assessments, security posture reviews, vCISO services and Cyber Essentials assessments.This is an exciting opportunity to be truly valued as a consultant, as you help shape the way we do things and provide excellent consultancy services to our customers and partners.The role will be predominantly home-based but there may customer visits every once in a while.
It would also be great to see you in our south coast office every so often.The role will include delivering the following services to our customers and wider partner network: ISO 27001 Implementation and AuditingSecurity Posture ReviewsPolicy Authoring & ReviewThreat Analysis Risk AssessmentsCIS hardening review of cloud services, such as Microsoft Azure, Amazon AWS & Microsoft 365vCISO & DPO servicesGDPR Gap Analysis & ConsultancySecurity Awareness TrainingCyber Essentials AssessmentsAdhoc Cybersecurity Consultancy You will also be responsible for working with our internal team to ensure that Team remains compliant with our own ISO 27001 certification.
This will involve carrying out our own internal audits and ensuring that our ISO management system is running smoothly.Successful candidates for this role will have the following : Relevant and current industry-recognised certification (such as CISSP, CISM or ISO27001 Lead Auditor / Implementer)At least 5 years experience in a customer-facing GRC consultancy roleExcellent written English skillsAble to communicate with customers and stakeholders on all levels – from developers and systems administrators through to less-technical senior board membersAble to work well on your own but also as part of the wider consultancy team on larger engagementsMust currently hold or be able to obtain UK Government SC clearanceAbility to manage multiple jobs for multiple customers concurrentlyHighly motivated team player with a "can do" attitudeGood understanding of Amazon AWS, Microsoft Azure and Microsoft 365An understanding of common security threats, vulnerabilities and common technical security controls and concepts Experience in any of the following areas is also highly beneficial to be selected for this role: Operational Technology (OT) / SCADA environmentsNHS Data Security and Protection Toolkit (DSPT)GDPRNIST 800-53 controlsCIS hardening guides and controlsNIS directivePCI-DSSIEC 62443 standardHSE OG-86 controls This role does not only come with a competitive salary but a great list of benefits: Lead introduction bonusesProfit share scheme (after the first 12 months of employment)Company pensionHoliday entitlement that increases with employment durationTop-spec Dell XPS laptopRegular team buildingThe best locally roasted, micro-lot coffee you've ever tasted in any office !Free soft drinks in the office.Canine-friendly office.