5472 jobs - 564 added today
396581 registered Jobseekers
Recruiting? Call us on 01772 639042
Email me jobs relevant to my job search
7 months ago
only 10 days until close

Technical Security Consultant (Risk & Governance Team)


Admiral Group
Location: Swansea
Job type: Permanent
Category: Professional Sales Jobs
Apply
Select how you want to share:
View similar
Introduction

We have a brand-new role to fill within our Security Department: The Technical Security Consultant position is a specialist risk management and advisory role. As a minimum, the Consultant will start with practical knowledge of risk assessment methodologies, have good working knowledge of technical security controls, risk management and related governance.

About the team

The Risk and Consulting capability sits within the Security Risk and Governance team.

The team is ready to move to the next level of maturity for Information Security Governance and Risk Management with a set of defined processes.

Job Purpose

The Consultant is expected to deliver risk management and advisory services as well as being a lead technical security contact for the Security Risk and Governance team.

The role includes operating and improving the risk management processes to reduce Admiral’s cyber risk exposure to agreed and acceptable levels.

The Consultant will engage with new IT and business initiatives to ensure that information risk is effectively quantified and mitigated through the identification and implementation of technical and non-technical controls.

Main Duties

The Consultant will:

* Ensure that information about technical vulnerabilities of information systems is readily available, the organisation’s exposure to such vulnerabilities evaluated and appropriate measures taken to reduce the associated risk

* Ensure that integration is in place between the risk management, operational and incident response processes, such that knowledge gained from analysing and resolving information security incidents can be used to reduce the likelihood and/or impact of future incidents

* Be responsible for operating and enhancing the risk assessment and risk management processes. They will establish and maintain information security risk criteria, including risk treatment approaches in line with agreed risk tolerances

* Apply the information security risk assessment process to identify risks within the scope of the information security management system and identify the risk owners

* Analyse information security risks associated with new IT and business initiatives, including potential impact and likelihood as well as identifying effective mitigating controls

Experience and Qualifications Required

The Technical Security Consultant (Risk Management) will have a strong grounding in information security risk management and/or technical security consulting. A degree education is preferred. A CISSP or CRISC qualification is highly desirable. A general understanding of security governance, risk assessment, risk management and controls is required. Further role specific skills will be developed during employment.

Essential skills

* Knowledge and experience of using at least one risk methodology

* Strong technical background, e.g. knowledge of IT controls implementation and management

* Previous security consulting experience

Desirable

* Degree in a technical discipline or equivalent experience

* CRISC, CISM or CISSP

About Admiral

Our success goes hand-in-hand with having a strong culture where we put our people and customers first. Our philosophy is simple yet effective: people who like what they do, do it better, and this in turn, means that our customers receive the level of service and products that they deserve. Our culture is honest, open and wholeheartedly focused on four key areas: Communication, Equality, Reward & Recognition, and Fun.

The Recruitment Officers looking after this role are Jessica Sutton (Jessica.SUTTON2@admiralgroup.co.uk) and Luke Tooze (Luke.TOOZE2@admiralgroup.co.uk) . If you’d like to know any more about the position, please feel free to drop them an email or give them a call on the Recruitment line.

#LI-LP1
Introduction

We have a brand-new role to fill within our Security Department: The Technical Security Consultant position is a specialist risk management and advisory role. As a minimum, the Consultant will start with practical knowledge of risk assessment methodologies, have good working knowledge of technical security controls, risk management and related governance.

About the team

The Risk and Consulting capability sits within the Security Risk and Governance team.

The team is ready to move to the next level of maturity for Information Security Governance and Risk Management with a set of defined processes.

Job Purpose

The Consultant is expected to deliver risk management and advisory services as well as being a lead technical security contact for the Security Risk and Governance team.

The role includes operating and improving the risk management processes to reduce Admiral’s cyber risk exposure to agreed and acceptable levels.

The Consultant will engage with new IT and business initiatives to ensure that information risk is effectively quantified and mitigated through the identification and implementation of technical and non-technical controls.

Main Duties

The Consultant will:

* Ensure that information about technical vulnerabilities of information systems is readily available, the organisation’s exposure to such vulnerabilities evaluated and appropriate measures taken to reduce the associated risk

* Ensure that integration is in place between the risk management, operational and incident response processes, such that knowledge gained from analysing and resolving information security incidents can be used to reduce the likelihood and/or impact of future incidents

* Be responsible for operating and enhancing the risk assessment and risk management processes. They will establish and maintain information security risk criteria, including risk treatment approaches in line with agreed risk tolerances

* Apply the information security risk assessment process to identify risks within the scope of the information security management system and identify the risk owners

* Analyse information security risks associated with new IT and business initiatives, including potential impact and likelihood as well as identifying effective mitigating controls

Experience and Qualifications Required

The Technical Security Consultant (Risk Management) will have a strong grounding in information security risk management and/or technical security consulting. A degree education is preferred. A CISSP or CRISC qualification is highly desirable. A general understanding of security governance, risk assessment, risk management and controls is required. Further role specific skills will be developed during employment.

Essential skills

* Knowledge and experience of using at least one risk methodology

* Strong technical background, e.g. knowledge of IT controls implementation and management

* Previous security consulting experience

Desirable

* Degree in a technical discipline or equivalent experience

* CRISC, CISM or CISSP

About Admiral

Our success goes hand-in-hand with having a strong culture where we put our people and customers first. Our philosophy is simple yet effective: people who like what they do, do it better, and this in turn, means that our customers receive the level of service and products that they deserve. Our culture is honest, open and wholeheartedly focused on four key areas: Communication, Equality, Reward & Recognition, and Fun.

The Recruitment Officers looking after this role are Jessica Sutton (Jessica.SUTTON2@admiralgroup.co.uk) and Luke Tooze (Luke.TOOZE2@admiralgroup.co.uk) . If you’d like to know any more about the position, please feel free to drop them an email or give them a call on the Recruitment line.

#LI-LP1
Apply

Email me jobs relevant to my job search

  Back to the top