Technical Cyber Security Consultant

Control Risks is seeking an experienced, technical cyber security Consultant to join its rapidly growing Digital Risks team. This is a unique opportunity that requires a motivated and diligent client-facing individual to join a highly successful team. The successful candidate will help deliver Control Risks' cyber security risk assessment engagements primarily across the EMEA region and act as a subject matter expert on cyber security technical solution development. The candidate will also need to demonstrate experience and expertise in designing cyber security architecture and implementation of technical security controls. The candidate will also need to be a team-player who is passionate about delivering high quality cyber security advice to some of the world's largest organisations. Located in London, the successful candidate will be able to travel up to 20% of working time. Travel will primarily be in Europe but may include travel to Africa and further afield. The successful candidate must hold a valid passport for international travel. The successful candidate will need to demonstrate understanding of the cyber security challenges facing our clients. The candidate will have an established track-record of delivering programmatic cyber security solutions for a diverse range of clients.

• Delivering projects (e.g., conducting asset identification exercises, developing cyber security technical solutions, enhancing client cyber resilience capabilities, cyber risk assessments against ISO and NIST CSF 2.0 standards, and demonstrating cyber audit expertise).
• Working with key project stakeholders (e.g., gathering information from interviews, document reviews and presenting findings) while maintaining the confidence of the client through clear communication and good project management.
• Provide flexible and responsive support as and when crisis management support is required and can be provided.

• Developing proposals for future client work.
• Project scoping and planning, to support pricing.
• Contributing to and building complex, multi-service line proposals.

• Demonstrable expertise delivering and implementing IT and network security solutions, preferably in both on-prem and cloud environments. This could include, but is not limited to: Security engineering, designing IT and security architecture, implementing IAM / PAM technologies, building robust backup and recovery capabilities, delivering vulnerability management solutions, implementing data loss prevention controls.
• Experience in delivering cyber security risk assessments against industry standards (NIST CSF, 800-53 and ISO27001) within an established global consultancy.
• The ability to explain difficult technical concepts and ideas in non-technical terms to senior executives.

• Strong understanding of operational technology cyber security best practices.
• An understanding of data privacy requirements and cyber security regulations in the EU and wider European region.
• A deep understanding of governance, standards, and compliance as they pertain to cyber security.
• An undergraduate degree in a field related to security, information security, intelligence, or computer science.
• Have a broad corporate experience and understanding of business process outsourcing and managing the third party cyber and information security risks that may arise.
• Good knowledge of cyber risk issues impacting clients in Europe.

• Undergraduate or post graduate degree in a field related to computer science or information technology.
• Certified Information Systems Security Professional (CISSP).
• Certified Information Security Manager (CISM).
• SABSA Chartered Security Architect - Practitioner Certificate (SCP).
• Cisco Certified Network Professional (CCNP).
• Certified Information Systems Auditor (CISA).
• Offensive Security Certified Professional (OSCP).
• GIAC Certified Forensic Analyst (GCFA).
• GIAC Cloud Security Essentials (GLCD).
• AWS Security Speciality.
• Azure Security Engineer Associate.
• ISO 27001 Lead Auditor.
• Similar industry qualifications/certifications.

• Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarised in the full job offer.
• We operate a discretionary global bonus scheme that incentivises, and rewards individuals based on company and individual performance.
• Control Risks supports hybrid working arrangements, wherever possible, that emphasise the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working.
• As an equal opportunities employer, we encourage suitably qualified applicants from a wide range of backgrounds to apply and join us and are fully committed to equal treatment, free from discrimination, of all candidates throughout our recruitment process.