Information Security Consultant
Overview
Bulletproof is growing our Information Security consultancy team and is looking for a PCI-DSS, SOC2 and ISO27001 subject matter expert with experience of delivering consultancy around all three topics, including gap analysis, audits, implementations projects and VCISO services, to a wide variety of customers.
You should have an excellent understanding of PCI DSS, SOC2, ISO27001 and other Information Security standards and frameworks will be advantageous e.g., Knowledge on HIPAA, NIST and the FTC safeguarding rules. We are looking for someone who can deliver excellent customer service, where necessary provide support to the team of Information Security consultants, develop, and improve existing product offerings, bring new ideas to the team, and have a good understanding of data protection best practices.
You should apply if you enjoy working in a fast-paced, innovative business with an exciting brand that has fun and creative ideas and are looking to disrupt the security market. Please note that this role may require travel to customer sites depending on the request of our customers and your geographical location.
This is an opportunity to be part of an exciting and fast-growing security company who has engineered its own innovative products from the ground up. We want to bring someone into the team to help find new ways to globally share our vision to use technology and most importantly talented people to solve businesses most difficult security challenges.
Responsibilities
- Supporting the Information Security Team Lead including deputising where required
- Input to the development of new Information Security related products and services
- Improving existing products and services
- Being a subject matter expert for PCI-DSS, ISO27001, SOC2 and other related standards and frameworks.
- Project Manage your own time effectively to maximise productivity and client delivery.
- Delivery of Information Security services to a wide variety of customers
- Managing and supporting VCISO customers
- Reviewing and quality assuring team members’ documents and outputs where requested.
- Conducting ISO27001, PCI DSS and SOC2 gap analyses/audits
- Conducting implementation projects on the above.
- Supporting VCISO customers with ad-hoc advice and guidance.
- Reviewing and writing client Information Security documentation
- Keeping careful logs of client interactions
- Delivery of Information Security awareness training and incident response tabletops to customers
- Supporting the Sales Team on scoping calls
- Support marketing activities where required e.g., writing content.
- Contribute to the development and improvement of the Bulletproof Information Security documentation set.
- Recognise and manage upsell opportunities within existing customers.
- Coaching and training junior team members
- Taking on various administration tasks
- Supporting the recruitment of and the development of new Team members
Skills required.
- Excellent written and verbal communication skills, including a good telephone manner.
- Excellent knowledge of PCI DSS, SOC2 and ISO27001 with a proven track history of managing projects in these areas with a range of different customers.
- Strong research skills to be able to keep on top of changes in standards.
- Knowledge of other international information security standards (desirable)
- Customer management skills, particularly in relation to setting and managing customer expectations.
- Ability to manage multiple client projects effectively.
- Ability to assimilate information about customers quickly.
- Ability to work autonomously with little supervision.
- Good MS Office skills, particularly Word, Excel, and PowerPoint
- Proof-reading/ reviewing skills.
- Exceptional tracking and recording skills (experience using Monday.com advantageous)
Qualifications / Experience
- Minimum 4 years of Information Security related experience (client facing roles preferred)
- Minimum of 3 years’ experience in an Information Security role handling PCI DSS, SOC2 and ISO27001.
- Good technological knowledge especially in cloud-based architecture and solutions (SaaS, PaaS, IaaS, Azure, AWS) preferred.
- Qualifications that would be advantageous for this role would include but not limited to: ISO27001 Lead Implementer, ISO27001 Lead Auditor, CISM, CISSP, CRISC, CGEIT, PMP, PRINCE2, and COBIT.
- The candidate should have a project management qualification or extensive project management experience.
Company Overview
We believe that our information and cyber security services are the best way to stay ahead of the hackers, take control of your infrastructure and protect your business-critical data. Key to our success is our in-house UK Security Operations Centre staffed 24/7 by our highly trained penetration testers, security analysts and compliance experts.
Bulletproof’s most popular services include:
- Penetration testing,
- Social Engineering
- Red Team
- Proactive Monitoring
- Training
- SMB/SME cyber security products
- Compliance Services
Strictly No Recruitment Agencies; any submission of resumes without prior request / engagement from Bulletproof Cyber Security will not be deemed as an introduction and therefore will not warrant an introduction fee.
- Department
- Compliance
- Locations
- Remote - UK
- Remote status
- Fully Remote
- Employment type
- Full-time
Remote - UK
Our Mission
"Our mission is to solve the greatest cyber security challenges through innovation and simplicity"
Join us on our journey at Bulletproof to make the world of cyber security a better and safer one for all.
About Bulletproof
Want to know more about us?
Here at Bulletproof, security is in our DNA. We love to make a difference to the world around us, and believe that our cyber security services are the best way to stake control of cyber threats and protect business-critical data.
Check out our about us page here
You can also contact our Talent Team at talent@bulletproof.co.uk
Information Security Consultant
Loading application form