Cyber Security Associate​/Senior Associate, Cyber Security & Privacy Practice

Position: Cyber Security Associate / Senior Associate, Cyber Security & Privacy Practice
Location: Greater London

* Develop an understanding of a client’s security posture to guide them in identifying, analysing and addressing cyber related threats and risks.
* Perform and support evaluation of Cyber Security programs based upon a recognised framework or regulation e.g. NIST Cyber Security Framework, NIS Directive , PCI Data Security Standard, ISO Standards, etc.
* Perform technical testing of clients’ environments including best practice audits, network assessments, penetration testing and vulnerability assessments.
* Carry out cyber security assessments across a range of technology architectures including cloud and hybrid models.
* Develop and deliver recommendations, reports, and presentations outlining findings from projects and summarising results of work performed.
* Maintain detailed working records reflecting assumptions, methodologies, and information sources employed during the performance of all analytical tasks.
* Manage time and tasks to meet internal and external deadlines.
* Maintain professional image within the company and project the same to those outside of the company.
* Support the day-to-day activities of engagements including interaction with other team members, subject matter experts, and client contacts.
* Provide input into client communications, both written and oral, throughout the lifecycle of the project.
* Holder of industry qualifications are preferred, but not required: CISSP, SANS, CISA, PMP, CISM, CREST, OSCP/OSCE, GWAPT, GXPN, GPEN and/or similar Forensics / Cyber Security certification(s)
You will have qualified in Cyber Security or related disciplines including Computer Science, Engineering, Technology or Computer Forensics or have 3+ years of industry experience and gained experience working on client facing engagements in a management consulting firm.
* Passion for Cyber Security or Incident Response and a desire for continuous improvement in expertise
* Strong ability and desire to use technology to solve complex problems
* Understanding of how to communicate effectively and concisely with key stakeholders
* Ability to approach projects both from a strategic and tactical perspective
* Ability to work both independently and as part of a team in a high-paced, multi-task environment with attention to detail.
* Strong conceptual, as well as quantitative and qualitative analytical skills
* Team player comfortable working in a dynamic and fast-paced collaborative environment
* Exceptional organisational skills, to include detailed note taking abilities
* Strong attention to detail, possessing problem solving, troubleshooting and analytical reasoning skills
* Frequently communicates with clients and co-workers and share information effectively
* Flexibility and responsiveness working on multiple projects in sometimes high-pressure situations simultaneously
* Ability to travel in and outside the UK for work, which could involve a few weeks at a time. Engagement duration can range from a week to months. The ability to travel at short notice is important
* Able to support out of hours work (approx. one in four weeks)
* Ability to engage with team and client personnel in demanding, deadline-driven situations
* Excellent communication (both written and verbal), mathematical, and organisational skills
* Flexibility with respect to assigned tasks and engagements due to challenging deadlines, changing deliverables, and evolving task priorities
* Detailed understanding of operating systems and network architecture including high level administrative experience working with Windows and/or non-Windows systems (such as Linux, Unix, Mac)
* Familiarity with security technology stacks, applications and solutions including but not limited to firewalls, SIEM platforms, end-point detection & response, Cloud security platforms, logging and monitoring systems, DLP, anti-malware controls, security compliance tools, intrusion detection and response systems.
* Knowledge about applied cyber security principles including policies and good practices, cryptography, access controls, application and network security
* Understanding of security principles, policies and industry best practices
* Strong work ethic, eagerness to…