Information Security Consultant
Information Security Consultant - £50,000 - £75,000 - Leeds (Fully onsite) We're seeking a skilled Information Security Consultant to join my client's expanding Information Security team. You'll play a key role in developing and maintaining robust security policies and processes across a global infrastructure supporting over 7,500+ staff across multiple locations. In this exciting role, you'll work closely with the Information Security team to review and improve security across all IT systems. You'll be proactive in identifying risks, responding to security incidents, and providing expert advice to ensure the business remains secure and resilient in the face of cyber threats. Key Responsibilities: Assist with security incident management and response.Manage and respond to security alerts from systems and end users.Perform routine security checks, investigate exceptions, and ensure compliance.Support client security requirement questionnaires and the bidding process.Develop and improve security policies, procedures, and technical controls.Identify security risks and opportunities to enhance resilience against cyber threats.Contribute to the design and implementation of secure systems and applications.Maintain the IT risk register and ensure disaster recovery plans are effective.Develop user and technical training materials on security best practices. Essential Skills: Security and Infrastructure Expertise: At least 2 years of hands-on experience in security and/or IT infrastructure within a large enterprise environment. Practical knowledge of enterprise-wide security standards like Cyber Essentials, ISO 27001/27002, and GDPR compliance is essential.Microsoft 365 Security Solutions: Strong understanding of Microsoft O365 security features and their implementation within large organisations. Experience with security tools and processes related to vulnerability management, security auditing, and monitoring.Network and Security Operations: Solid grasp of networking principles, security operations, and incident response. You should be confident in identifying risks, implementing solutions, and performing vulnerability scanning to detect and mitigate security issues.Security Incident Response: Knowledge of industry best practices for handling security incidents, including event and log analysis to detect and respond to threats.Documentation and Reporting: Proven experience in formal document creation, including writing security policies, procedures, and reports. You'll be comfortable translating technical findings into clear, actionable guidance for non-technical teams.Threat Intelligence and Risk Management: Strong experience in threat intelligence analysis, with the ability to recognise emerging security risks and recommend strategies to mitigate them. Familiarity with maintaining risk registers and disaster recovery/business continuity plans is highly desirable. Desirable Skills: Familiarity with security frameworks such as ISO 27001 and the Data Protection Act.Experience in Microsoft O365 security, networking, and security auditing.Practical understanding of vulnerability scanning tools and techniques.Knowledge of threat intelligence analysis and disaster recovery principles. Ready to join a fast-paced, globally connected team? If you're passionate about safeguarding IT infrastructure and driving forward information security initiatives, this role is for you. Apply now and make a real impact on the future of our organisation's security! Keywords: Information Security Consultant, InfoSec Consultant, Security Consultant, IT Security, Cybersecurity, Microsoft 365 Security, ISO 27001 compliance, Vulnerability Management, Security Incident Response, Cyber Essentials, Disaster Recovery, Threat Intelligence BeTechnology Group Limited is acting as an Employment Agency in relation to this vacancy.
read more