Job Description
My client are a utilities company with an excellent name in the market looking for experienced Security Consultants on a contract basis (long term).
Inside IR35
Initially 6 Months
Job Summary:
We are seeking a skilled Security Consultant with expertise in cryptography, data security strategy, and threat detection enhancement. The successful candidate will play a key role in strengthening our organization's security posture by designing and implementing cryptographic solutions, driving security capability maturity, and enhancing threat detection capabilities.
Key Responsibilities:
* Cryptography:
* Design, implement, and manage cryptographic systems (encryption, key management, PKI).
* Ensure compliance with relevant cryptographic standards (e.g., NIST, ISO/IEC 19790, PCI DSS).
* Evaluate and recommend secure protocols and algorithms for enterprise use.
* Conduct cryptographic risk assessments and support cryptanalysis efforts as needed.
* Data Security Strategy & Capability:
* Develop and maintain data security frameworks aligned with business goals.
* Define and enforce data classification, protection, and privacy policies.
* Provide strategic input for improving security capabilities (DLP, DRM, tokenization).
* Support regulatory compliance efforts (e.g., GDPR, CCPA, HIPAA).
* Threat Detection Enhancement:
* Assess and enhance SIEM and threat detection rules to improve detection accuracy.
* Lead initiatives to integrate threat intelligence feeds and behavioral analytics.
* Collaborate with SOC teams to optimize incident detection and response workflows.
* Identify gaps in detection coverage and recommend mitigation strategies.
Required Qualifications:
* Bachelor’s degree in Computer Science, Information Security, or related field.
* 5+ years of experience in cybersecurity, with specialization in cryptography, data protection, and threat detection.
* Hands-on experience with cryptographic tools, SIEM platforms (e.g., Splunk, QRadar), and DLP solutions.
* Familiarity with frameworks and standards (e.g., NIST CSF, MITRE ATT&CK, ISO 27001).
* Strong analytical and problem-solving skills.
* Excellent communication and stakeholder management abilities.
Preferred Qualifications:
* Certifications: CISSP, CISM, CCSP, CEH, or equivalent.
* Experience with cloud security technologies (AWS, Azure, GCP).
* Knowledge of scripting languages (Python, PowerShell) for automation and detection engineering.
* Prior experience in financial services, healthcare, or other regulated industries.