My leading consultancy client is seeking an experienced Cloud Security Consultant within Information Risk. This is a manager level role in the Information Risk Assessment team, leading on technical information risk assessments.
The role will support how the firm identifies and analyses information security threats and risks both internal and client information in projects, initiatives, applications, IT resources, and Third Parties.
The outcome of these activities is to advise on the controls necessary to keep these risks within agreed limits.
Candidates must have the following skills / experience:
Proven experience of information security with a strong hands-off technical security background
Direct experience of performing security risk assessments of applications and infrastructure within the Cloud, such as AWS, Azure and GCP
Strong knowledge of information security standards (e.g. Cyber Essentials, ISF Standard of
Good Practice for Information Security, ISO 27001, NIST Cybersecurity Framework, CIS Top 20 Controls) and Information Security Industry Good Practices
Excellent understanding of security risk assessment and risk management methodologies, as well as software development lifecycles, especially in the context of building secure solutions in the public cloud
Cloud Security Certifications preferred such as AWS Certified Security Specialist, Microsoft Certified Security Engineer (AZ 500), Google Cloud Certified Professional Cloud Security Engineer or equivalent
Security certifications preferred (CISSP, CRISC or equivalents)
CVs to Nick ASAP for immediate review
To apply for this job please visit itjobpro.co.uk.