Information Security Consultant (All UK Offices)

Information Security Consultant (All UK Offices)

Potential for flexible location: Basingstoke, Bristol, Burton, Dorchester, Dorking, Glasgow, Gloucester, Plymouth, Warrington

Frazer-Nash has an established team of information and system security professionals working on security-specific assignments, and multi-disciplinary assignments alongside our physical security, safety, systems and engineering colleagues. We are looking to expand our team in order to deliver our growing portfolio of projects. The new roles will suit qualified professionals who are looking for the next step in their career, working on projects which frequently involve new and innovative technologies and system applications.

Consultants can be based in any of our United Kingdom offices, but will sometimes work on client sites. In return, we offer challenging and rewarding work and a competitive rewards package.

We are looking for knowledgeable and conscientious individuals who are looking for a challenging role delivering real benefits to clients on a full or part-time basis. You will work on assignments which vary in nature and size, and will be expected to contribute to managing project delivery and winning new business.

Your key responsibilities will be:

• Providing security advice and guidance to clients in respect of their existing systems, technical refresh plans and new projects;
• Writing, reviewing and overseeing the production of system security policies and other documents to meet corporate or regulatory requirements;
• Identifying and establishing good security governance principles, procedures and documents appropriate to clients’ business environments and priorities;
• Identifying and assessing information and system security risks and producing appropriate risk management and remediation plans.

Requirements

The following requirements are essential to the role:

• Experience of carrying out security risk assessment and management assignments in complex environments;
• Certified Information Systems Security Professional (CISSP) / Certified Information Security Manager (CISM) / Certified Information Systems Auditor (CISA);
• Broad knowledge of HMG Information Assurance Policies, Standards and Guidelines including MOD-specific procedures such as JSP440 and JSP 604;
• Hold or be willing and eligible to hold HMG Security Clearance;
• Ability to present technical arguments with clarity for a range of technical and non-technical readerships and audiences;
• Ability to work to tight deadlines under pressure while managing clients’ expectations and delivering high quality work;
• Ability to work effectively on solo assignments, within multi-disciplinary teams and in a matrix organisation;
• Ambition to maintain and enhance personal technical and consultancy skills.
• Awareness of non-government security standards (e.g. the ISO27000 family and/or NIST 800 series) and codes of practice, including those relating to safety-critical and process control systems;
• Knowledge and experience of industrial control system security, including safety-critical and safety-related systems;
• CESG Certified Professional (CCP) at any level;
• Associate or Full Membership of a relevant recognised professional body such as the British Computer Society (BCS) or the Institute of Information Security Professionals (IISP);
• Experience and understanding of security issues specific to UK regulated industries e.g. Transport and Nuclear.

The following requirements are desirable for the role:

• Awareness of non-government security standards (e.g. the ISO27000 family and/or NIST 800 series) and codes of practice, including those relating to safety-critical and process control systems;
• Knowledge and experience of industrial control system security, including safety-critical and safety-related systems;
• CESG Certified Professional (CCP) at any level;
• Associate or Full Membership of a relevant recognised professional body such as the British Computer Society (BCS) or the Institute of Information Security Professionals (IISP);
• Experience and understanding of security issues specific to UK regulated industries e.g. Transport and Nuclear.

Supporting your technical role

Targeted professional development: an ongoing activity to ensure your technical knowledge stays up to date.

Mentoring: providing you with ongoing guidance and support.

Accredited training: if you have not yet achieved Chartered status we will support you. We offer accredited schemes with:

• The Institution of Mechanical Engineers (IMechE)
• The Royal Aeronautical Society
• The Institution of Engineering and Technology
• Royal Institution of Naval Architects
• Institute of Physics

As part of your benefits package, Frazer-Nash reimburses your membership fees to a professional institution.

What’s on offer

Career satisfaction and reward for ongoing commitment are what you can expect working at Frazer-Nash. We want to help you grow your career by providing you with the best opportunities for training and development. We also have some excellent benefits you'll want to take advantage of. We provide our people with an excellent benefits package that comprises:

• Competitive salary
• 25 days' holiday entitlement
• Holiday sale and purchase scheme
• Company pension scheme
• Targeted professional development
• Life assurance
• Private healthcare membership
• Bonus scheme linked into company performance
• Paid membership fees to a professional institution
• Support in attaining professional membership
• Cycle to work scheme
• Share purchase scheme
• Flexible start and finish time 
• Season rail ticket loan

Apply: Please click the apply button below which will take you to an application page on our website.