Cyber Security Consultant
Cyber Security Consultant Location: Remote in the United Kingdom
Purpose, objectives, and requirements of the role:
BlueVoyant Cyber Security Consultants work within the Professional Services team advising, supporting, and managing clients with multiple activities, including but not limited to:
Technical & organizational security controls
Cyber and digital transformation activities
Remediation workstreams and roadmaps
Policy & process implementation
Information Security Maturity Audits/CMMI
Certification or alignment with recognised industry standards
Compliance with applicable regulations & legislation
Building and implementing governance & risk management processes
Design implementation and testing of security tooling
BC/DR & Incident response capability building and testing
Production of threat intelligence reports and research
Supply Chain Risk Management
Consultants must possess and be able to demonstrate credibility and experience as well as currency in these fundamental skill sets.
Consultants will work with industry-leading proprietary and standard security tools, other experts, and capabilities to protect and defend client organizations and their people, intellectual property, and technology against wide-ranging threats in including nation states and Advanced Persistent Threat groups that act on their behalf.
Consultants must be pro-active, and able to lead manage and problem solve on multiple workstreams across varied client sectors by contributing to, managing, over-seeing, or supporting complex cyber-security and technology transformation programs, with limited oversight.
There is a base requirement to demonstrate understanding of and find ways to integrate activity with BlueVoyant colleagues across the globe, specifically Digital Forensics, Incident Response and Penetration Testing specialists as well as wider BlueVoyant service offerings when appropriate, to produce threat-aware products, services and outputs that are impactful, efficient, cohesive, and are enhanced with intelligence and automation.
BlueVoyant are trusted cyber-security partners and advisors to some of the most high-profile organizations, entities, and governments in the world. Deep and wide-ranging expertise & experience, credibility, and quick understanding of key client outcomes with the ability to determine effective remediation paths is critical. Consultants must have demonstrable ability to understand people, communicate technical solutions to stakeholders at all levels, support senior client decision making, and help client technical teams overcome difficult challenges, potentially in the wake of a significant security breach.
Main duties and responsibilities:
Work to deliver, and directly support the delivery of any client facing activity deemed necessary, which may include work or travel out of hours.
Deliver, lead & manage complex workstreams; take ownership of outputs and outcomes and provide reporting and feedback when required.
Support, when necessary, the development of opportunities by contributing as an SME in response to client RFPs and/or the construction of proposal documents and responses.
Develop timely, accurate reporting that can convey technical findings to non-technical audiences at all levels when necessary.
When required, work with the Director of Cyber Advisory and Head Consultant to continuously improve capability, enhance & integrate service offerings, and build the Professional Services team.
In addition to the duties and responsibilities listed, perform other duties assigned by Line Management from time to time.
Comply with applicable legislation, codes of conduct, and company policy - such as Health and Safety procedures as outlined by the Companies Health and Safety Policy.
Essential Skills/Attributes:
3+ years in a client facing information/cyber security/GRC role or 5+ years in a directly related field/role (such as cyber/intelligence/security in UK Armed Forces, Law Enforcement, UK Intelligence Community, UK Government Departments)
Degree in Cyber Security, Computer Science, or related subject; or genuine equivalent experience working in cyber-security, GRC, security audit etc
Professional certifications (currently held) including but not limited to CISSP, CCSP, CISM, CRISC, CISA,
Qualifications/experience in auditing against/implementing multiple security standards and frameworks, such as ISO 27001/2, NIST CSF, ISF CMMI, CIS, UK Govt/Defence standards, SANS
Ability to translate technical requirements and their benefits to a non-technical audience and appeal to relevant stakeholders
Experience in the production and briefing of threat intelligence products (not specifically cyber threat intelligence)
Experience in conducting multi-source analysis to determine prioritised threats, risks and issues
Excellent verbal, written communication, and presentation skills
Ability to work independently and as part of a team
Ability to travel to meet business needs
Preferred competencies:
Relevant cyber security or other qualifications, certifications such as CSX-P, CDPSE, SSCP, CAP, OWASP, PCI DSS
Security Cleared with potential to gain enhanced clearances
Experience implementing privacy solutions based on the requirements of the EU GDPR and UK Data Protection Act 2018
Good awareness of threats trends and issues across the cyber security industry
Proven self-management skills, including time management and the ability to work on multiple assignments concurrently
A passion for innovation and solving problems
About BlueVoyant
At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability!
Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies.
Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America.
All employees must be authorized to work in the United Kingdom. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.
BlueVoyant Candidate Privacy Notice
To understand how we secure and manage your personal data upon submitting a job application, please see our Candidate Privacy Notice, which can be found here - Candidate Privacy Notice
About the job
Apply for this position
Cyber Security Consultant
Cyber Security Consultant Location: Remote in the United Kingdom
Purpose, objectives, and requirements of the role:
BlueVoyant Cyber Security Consultants work within the Professional Services team advising, supporting, and managing clients with multiple activities, including but not limited to:
Technical & organizational security controls
Cyber and digital transformation activities
Remediation workstreams and roadmaps
Policy & process implementation
Information Security Maturity Audits/CMMI
Certification or alignment with recognised industry standards
Compliance with applicable regulations & legislation
Building and implementing governance & risk management processes
Design implementation and testing of security tooling
BC/DR & Incident response capability building and testing
Production of threat intelligence reports and research
Supply Chain Risk Management
Consultants must possess and be able to demonstrate credibility and experience as well as currency in these fundamental skill sets.
Consultants will work with industry-leading proprietary and standard security tools, other experts, and capabilities to protect and defend client organizations and their people, intellectual property, and technology against wide-ranging threats in including nation states and Advanced Persistent Threat groups that act on their behalf.
Consultants must be pro-active, and able to lead manage and problem solve on multiple workstreams across varied client sectors by contributing to, managing, over-seeing, or supporting complex cyber-security and technology transformation programs, with limited oversight.
There is a base requirement to demonstrate understanding of and find ways to integrate activity with BlueVoyant colleagues across the globe, specifically Digital Forensics, Incident Response and Penetration Testing specialists as well as wider BlueVoyant service offerings when appropriate, to produce threat-aware products, services and outputs that are impactful, efficient, cohesive, and are enhanced with intelligence and automation.
BlueVoyant are trusted cyber-security partners and advisors to some of the most high-profile organizations, entities, and governments in the world. Deep and wide-ranging expertise & experience, credibility, and quick understanding of key client outcomes with the ability to determine effective remediation paths is critical. Consultants must have demonstrable ability to understand people, communicate technical solutions to stakeholders at all levels, support senior client decision making, and help client technical teams overcome difficult challenges, potentially in the wake of a significant security breach.
Main duties and responsibilities:
Work to deliver, and directly support the delivery of any client facing activity deemed necessary, which may include work or travel out of hours.
Deliver, lead & manage complex workstreams; take ownership of outputs and outcomes and provide reporting and feedback when required.
Support, when necessary, the development of opportunities by contributing as an SME in response to client RFPs and/or the construction of proposal documents and responses.
Develop timely, accurate reporting that can convey technical findings to non-technical audiences at all levels when necessary.
When required, work with the Director of Cyber Advisory and Head Consultant to continuously improve capability, enhance & integrate service offerings, and build the Professional Services team.
In addition to the duties and responsibilities listed, perform other duties assigned by Line Management from time to time.
Comply with applicable legislation, codes of conduct, and company policy - such as Health and Safety procedures as outlined by the Companies Health and Safety Policy.
Essential Skills/Attributes:
3+ years in a client facing information/cyber security/GRC role or 5+ years in a directly related field/role (such as cyber/intelligence/security in UK Armed Forces, Law Enforcement, UK Intelligence Community, UK Government Departments)
Degree in Cyber Security, Computer Science, or related subject; or genuine equivalent experience working in cyber-security, GRC, security audit etc
Professional certifications (currently held) including but not limited to CISSP, CCSP, CISM, CRISC, CISA,
Qualifications/experience in auditing against/implementing multiple security standards and frameworks, such as ISO 27001/2, NIST CSF, ISF CMMI, CIS, UK Govt/Defence standards, SANS
Ability to translate technical requirements and their benefits to a non-technical audience and appeal to relevant stakeholders
Experience in the production and briefing of threat intelligence products (not specifically cyber threat intelligence)
Experience in conducting multi-source analysis to determine prioritised threats, risks and issues
Excellent verbal, written communication, and presentation skills
Ability to work independently and as part of a team
Ability to travel to meet business needs
Preferred competencies:
Relevant cyber security or other qualifications, certifications such as CSX-P, CDPSE, SSCP, CAP, OWASP, PCI DSS
Security Cleared with potential to gain enhanced clearances
Experience implementing privacy solutions based on the requirements of the EU GDPR and UK Data Protection Act 2018
Good awareness of threats trends and issues across the cyber security industry
Proven self-management skills, including time management and the ability to work on multiple assignments concurrently
A passion for innovation and solving problems
About BlueVoyant
At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability!
Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies.
Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America.
All employees must be authorized to work in the United Kingdom. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.
BlueVoyant Candidate Privacy Notice
To understand how we secure and manage your personal data upon submitting a job application, please see our Candidate Privacy Notice, which can be found here - Candidate Privacy Notice