IO Associates are helping a leading player across the Cloud platform and a Microsoft Gold Partner recruit a Cyber Security Consultant.
The successful applicant will support the Security Architect in their internal and client facing duties they will also Monitor and manage pre- and post-breach incidents as well as overall continual service improvement and growth planning/roadmap for the security service.
Role: Cyber Security Consultant
Salary: £45,000 + Benefits
Location: Central London
·Conduct penetration testing and vulnerability scanning
·Conduct gap analysis and compliance auditing for the new GDPR regulation and other GRC standards and frameworks;
·Operational support for vulnerability management and continuous monitoring systems and incident management procedures;
·Work closely with enterprise and security architects, other functional-area architects, engineering, and security specialists to ensure adequate security solutions and controls are in place throughout all IT systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements;
·Assist project team's compliance with enterprise and IT security policies, SDLC designs, industry regulations, and best practices;
·Contribute to the alignment of security governance with ISO27001 and GDPR compliance and any other
·Embrace a culture of continuous service improvement and service excellence;
·2-5 years in the Information Security industry;
·Good knowledge of the Data Protection Act 1998, the new GDPR regulation,
·Good experience with infrastructure & web penetration testing using manual approach and automated tools, such as using Kali, Metasploit, Core Impact, Nessus, Burp Suite, among others.
·Knowledge of a broad range of security technologies, including NextGen Firewalls, DLP, IDS/ IPS, IdAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware, vulnerability management;
·Experience with logging and alerting platforms, including SIEM integration;
·Experience with Microsoft SPE E5 security technologies (AIP, CAS, OMS, ATP, ATA);
·Experience with incident response methodologies and technologies;
·Experience administering network devices, databases, and/or web application servers
·Professional IT Accreditations in at least one of these (or working towards): OSCP, CREST, SSCP, CCSP, CISSP, CCNA, CISA).