Security Consultant

Job Ref: 50193566
Sector: Audit, Risk & Security
Job Type: Contract
Date Added: 18 July 2018

Quick Apply

Request a callback

Send To A Friend

Security Consultant - Edinburgh - 6 Month Contract

Our Banking client is offering an exciting opportunity for a Security Consultant to join their Edinburgh based team on a 6 month contract.


    1. establish3rdparties' compliance with clients Minimum Security Requirements:
      1. Critically assess and challenge prospective 3rd party vendors' security processes, policies & capabilities, mapping these back to the MSRs
      2. Assemble evidence to demonstrate where the capability complies with our needs and risk appetite
      3. Ensure any gaps are clearly documented, acknowledged by the vendor and tracked
      4. Negotiate with vendors to gain their commitment to close material gaps
      5. Where gaps remain, ensure these are understood, risk-assessed for materiality and any mitigations identified, taking input from 2LOD and Technology, Security and Exec leadership
      6. Present this combined view to Information Security to ensure continued SMR confidence in the programme's security posture
    2. Detail the partnership and operating model with your team and wider function
    3. Develop and maintain excellent knowledge of the client's security standards and their application
    4. Contribute to the Technology and Business Risk Management
    5. (As needed) Coordinate formal Security Assessments
    6. (As needed ) Undertake Data Protection Impact Assessments for new vendors, where appropriate
    7. Document and evidence more broadly how the programme is compliant with all relevant regulation, legislation and the clients policy related to Information and Cyber Security

Skills/Knowledge (a good mix of the following):

  • Generalist cyber security knowledge with a good understanding of the threat profile and defence mechanisms in a banking context, especially as these relate to the development and operational processes of third party SaaS suppliers
  • General technical understanding of the development and operational processes at play in cloud-based, SaaS platforms
  • Strong partnership management skills
  • Strong negotiation, presentation and documentation skills
  • Confident communicator able to build consensus despite a backdrop of frequent ambiguity
  • Experience of being effective in large, complex organisations while maintaining a high level of start-up style motivational energy

Should this Security Consultant position be of interest please submit your CV and I will be in contact by telephone as required.

We are an equal opportunities employer and welcome applications from all suitably qualified persons regardless of their race, sex, disability, religion/belief, sexual orientation, gender reassignment, marriage and civil partnerships, pregnancy or maternity or age

17/08/2018 08:46:01