Overview
We are seeking a skilled Cybersecurity Consultant to join our dynamic team. The ideal candidate will possess a deep understanding of information security and network security principles, with the ability to implement robust security measures across various platforms. This role requires expertise in both cloud and on-premises environments, ensuring the integrity and confidentiality of sensitive data while adhering to industry standards such as NIST and ISO. The Cybersecurity Consultant will play a pivotal role in incident management and response, working collaboratively with IT teams to safeguard our infrastructure.
Responsibilities
* Develop and implement cybersecurity strategies aligned with organisational goals.
* Conduct risk assessments and vulnerability analyses to identify potential threats.
* Monitor network traffic for unusual activity using SIEM tools and other network monitoring solutions.
* Manage incident response processes, including detection, analysis, containment, eradication, and recovery.
* Ensure compliance with latest NCSC, NIST standards, ISO regulations, and other relevant frameworks.
* Collaborate with IT teams on firewall configurations, VPN setups, and load balancing solutions.
* Provide guidance on encryption methods and authentication protocols to protect sensitive information.
* Assist in the development of disaster recovery plans and business continuity strategies.
* Stay updated on emerging cybersecurity threats and technologies, including cloud computing trends.
* Lead and execute infrastructure and application penetration testing assisgnments for public sector and private clients.
* Supervisor and mentor CHECK Team Members, ensuring high standards in testing, delivery, reporting, methodology, and client communication.
* Availability to travel onsite in the UK or the Channel Island for testing requirements.
* Conduct training sessions for staff on best practices in information security.
Qualifications
* Hold a valid CREST CCT (App/infra) or CyberScheme CHECK Team Leader (CTL-INF/APP) certification.
* Achieved the Principal or Chartered Cyber Security Professional title (UK Cyber Security Council - Security Testing specialism).
* Minimum two years experience as a CHECK Team Leader and three years professional penetration testing experience.
* Proven experience in cybersecurity roles with a strong understanding of WAN, LAN, SAN, and cloud architectures (AWS, Azure, Google Cloud Platform).
* Familiarity with operating systems including Windows, macOS, Linux, and UNIX environments.
* Proficiency in programming languages such as Python, PowerShell, Bash and Java for automation tasks.
* Knowledge of networking protocols (TCP/IP, DHCP, DNS) and services (Active Directory, LDAP).
* Familiarity with Technical Surveillance and COunter Measures (TSCM), mobile app testing (iOS/Andriod), cloud security testing and AI security testing.
* Experience with tools such as Splunk for log analysis and incident detection.
* Understanding of system administration principles within both physical and virtual environments (PaaS, IaaS).
* Familiarity with DevOps practices and shell scripting (Bash) for system automation.
* Strong analytical skills with the ability to troubleshoot complex technical issues related to cybersecurity.
* Excellent communication skills to effectively convey technical concepts to non-technical stakeholders. Join us in our mission to enhance cybersecurity measures while fostering a culture of safety and awareness within the organisation. Your expertise will be invaluable in protecting our digital assets against evolving threats.
Job Types: Full-time, Fixed term contract
Contract length: 12 months
Pay: From £50,000.00 per year
Benefits:
* Company pension
* Flexitime
* Free parking
* On-site parking
Ability to commute/relocate:
* Portsmouth PO1 3EZ: reliably commute or be willing to relocate with an employer-provided relocation package (required)
Experience:
* Cybersecurity: 2 years (required)
Willingness to travel:
* 75% (required)
Work Location: In person