Cyber Security Team - Edinburgh

Edinburgh, Edinburgh
£35,000 - £100,000 per annum
03 Mar 2018
31 Mar 2018
Contract Type
Full Time
Cyber Security Team-build
£35000 - £100000 per annum

Company client is searching a cyber security team-build to be located in Edinburgh. The roles sit within the financial services market and begin at c£35,000 and reach c£100,000 plus competitive extras.

Responsibilities include but not limited to:

* Leading a portfolio of cyber projects, responsible for the day to day running of the engagements.
* Managing and creating reports and via review ensuring the highest quality deliverables.
* Contributing to thought-leadership, project definition, educating of peers and shaping of best-in-class practice.
* Establishing senior stakeholders relationships.
* Working to agree, scope and plan the delivery phase of engagements.
* Contributing to marketing material.
* Managing engagements to time and budget.
* Contributing to the development of the existing cyber risk team acting as mentor and coach to the junior members of the team and leading by example

Skills and experience required across one or more of the following:-

* Security strategy, assessment, designing and implementing security strategy, governance frameworks over processes, controls, organisation and infrastructure to management cyber security
* Security transformation programmes - design and management of security solution implementations and / or remediation programmes to address risks across AV, patching, secure build, vulnerability scanning & remediation, logging and monitoring, segregation, threat management, user awareness
* Identity and access management (IDAM), assessing current IDAM practices and designing solutions to improve JML processes, privileged access and recertification programmes.
* Breach and incident management, design and implementation of breach and major incident management practices
* Security policies and procedures, design and implementation of security policies, procedures, standards and controls in line with regulation and/or current standards, ISO27001, NIST, SANS etc.
* Data privacy, implementation of data protection / GDPR programmes to address confidentiality and security over customer, employee or patient data.
* Resilience, design and implementation of programmes to improve IT Disaster Recovery, Business Continuity
* Cyber awareness programmes, design and delivery of cyber security awareness programmes to executive level or wider organisation
* Security over operational technology and control systems (SCADA)
* Experience in working with Internet of Things solutions, in particular working with clients to implement security within these environments
* Experience in working within agile development environments to embed security successfully into systems prior to product / production release
* Security architecture - creating secure architecture designs for solutions, designing secure patterns for reuse and the delivery of architectural reviews using TOGAF or SABA.
* Security around emerging technology platforms - mobile device platforms (iOS, Android), cloud services (IaaS, PaaS, SaaS), Big Data, Social media


* Strong academic record, to degree level or equivalent industry experience
* Security relation qualifications such as CISSP, CISM, CISMP, ISO27001 lead implementer or auditor, MBCI, IAPP(desirable)
* Project and programme related qualifications; Prince II, Scrum, Agile