Search Vacancies

Technical Security Consultant (Risk & Governance Team)

Business Role Type
Business Support Role
Business Support Departments
Security
Location
Cardiff, Swansea
External Closing Date
12/07/2019

This vacancy has now expired, and is not accepting any new applications.

Please search for live opportunities or use the Register Interest facility to sign up for job alerts and/or leave your CV speculatively.

Introduction

We have a brand-new role to fill within our Security Department: The Technical Security Consultant position is a specialist risk management and advisory role. As a minimum, the Consultant will start with practical knowledge of risk assessment methodologies, have good working knowledge of technical security controls, risk management and related governance.

About the team

The Risk and Consulting capability sits within the Security Risk and Governance team.

The team is ready to move to the next level of maturity for Information Security Governance and Risk Management with a set of defined processes.

Job Purpose 

The Consultant is expected to deliver risk management and advisory services as well as being a lead technical security contact for the Security Risk and Governance team.

The role includes operating and improving the risk management processes to reduce Admiral’s cyber risk exposure to agreed and acceptable levels.

 The Consultant will engage with new IT and business initiatives to ensure that information risk is effectively quantified and mitigated through the identification and implementation of technical and non-technical controls.

Main Duties

The Consultant will:

  • Ensure that information about technical vulnerabilities of information systems is readily available, the organisation’s exposure to such vulnerabilities evaluated and appropriate measures taken to reduce the associated risk
  • Ensure that integration is in place between the risk management, operational and incident response processes, such that knowledge gained from analysing and resolving information security incidents can be used to reduce the likelihood and/or impact of future incidents
  • Be responsible for operating and enhancing the risk assessment and risk management processes. They will establish and maintain information security risk criteria, including risk treatment approaches in line with agreed risk tolerances  
  • Apply the information security risk assessment process to identify risks within the scope of the information security management system and identify the risk owners
  • Analyse information security risks associated with new IT and business initiatives, including potential impact and likelihood as well as identifying effective mitigating controls

Experience and Qualifications Required

The Technical Security Consultant (Risk Management) will have a strong grounding in information security risk management and/or technical security consulting. A degree education is preferred. A CISSP or CRISC qualification is highly desirable. A general understanding of security governance, risk assessment, risk management and controls is required. Further role specific skills will be developed during employment.

Essential skills

  • Knowledge and experience of using at least one risk methodology
  • Strong technical background, e.g. knowledge of IT controls implementation and management
  • Previous security consulting experience

Desirable

  • Degree in a technical discipline or equivalent experience
  • CRISC, CISM or CISSP

About Admiral

Our success goes hand-in-hand with having a strong culture where we put our people and customers first. Our philosophy is simple yet effective: people who like what they do, do it better, and this in turn, means that our customers receive the level of service and products that they deserve. Our culture is honest, open and wholeheartedly focused on four key areas: Communication, Equality, Reward & Recognition, and Fun.

If you would like to be considered for this opportunity, please click “apply now” to complete an online application form.

The Recruitment Officer looking after this role is Jessica Sutton. If you have any questions about the position, please feel free to drop her an email Jessica.SUTTON2@admiralgroup.co.uk or give her a call on the Recruitment line - 0800 118 1619. Please note, we are unable to accept CVs via email.

#LI-LP1