Cyber Security Consultant
Hybrid
Scotland, United Kingdom
Freelance
18-02-2025
Job Specifications
Gigged.AI is a freelance talent marketplace specialising in the IT and technology sector. We have an opportunity live at the moment with one of our clients for a Cyber Security Consultant
This is a short term (less than 1 month), outside IR35 with a rough budget of £7k. Open to guidance on timeframe and budget.
If interested then you must submit a proposal through the Gigged.AI website for this gig. You can do so here - https://app.gigged.ai
Project Overview:
Our client are looking for a consultant to conduct a comprehensive assessment of Scottish Sea Farms (SSF) cyber security posture, focusing on technical tooling, processes, procedures, and governance. The assessment should benchmark our current practices against the ISO27001 standard to identify gaps and areas for improvement.
We will need guidance on timelines/budget through your proposal, we have set out estimations. Please set these out within your milestones.
Scope of Work:
Technical Tooling Assessment:
- Evaluate the effectiveness of current security tools in place, including firewalls, intrusion
detection/prevention systems, antivirus software, and encryption tools.
- Assess the integration and interoperability of these tools within the existing IT infrastructure.
Identify any gaps in the current tooling that may expose SSF to cyber threats.
Processes and Procedures:
- Review existing cyber security processes and procedures to ensure they align with best practices and ISO27001 requirements.
- Evaluate the incident response plan, including detection, response, and recovery processes.
- Assess the effectiveness of access control measures and data protection protocols.
Governance:
- Analyse the governance framework for cyber security, including roles, responsibilities, and accountability.
- Review SSF risk management approach and how it aligns with ISO27001 standards.
- Evaluate the effectiveness of security awareness and training programs for employees.
Benchmarking Against ISO27001:
- Conduct a gap analysis to compare current practices with ISO27001 standards.
- Provide recommendations for achieving compliance with ISO27001, including necessary changes to tooling, processes, and governance.
Deliverables:
- A detailed report outlining the findings of the assessment, including identified gaps and risks.
- Recommendations for improvements and a roadmap for achieving ISO27001 compliance.
- A presentation to key SSF stakeholders (Senior Management Team and IT colleagues) summarising the assessment results and proposed/recommended actions.
About the Company
Gigged.AI exists to eradicate tech skill shortages for enterprises using the power of internal mobility and our contingent talent network. Our products employ AI and skills-based matching to put the right people into the right roles with rapid speed and efficiency. Our Internal Talent Marketplace (ITM) provides skills analytics within a workforce and matches employees to the right projects, reducing the need for expensive external hires and improving retention. This solution can be deployed in hours and delivers ROI within ... Know more
Related Jobs
- Company Name
- Experis IT
- Job Title
- Network & Security Engineer
- Job Description
- Role: Network & Security Engineer Location: Central London (Hybrid - 3 days per week onsite) Duration: 3 Months Day rate: £500 inside IR35 Role Description: Responsible for installing, maintaining and supporting network communication within the business. Essential Qualified to CCNP Security, CCSE or equivalent level Able to work and troubleshoot IPSec & SSL VPNs Experience of working on Firewalls like Juniper, CheckPoint, PaloAlto, MS Azure, Barracuda WAF and Barracuda Firewall. Experience of working on network switches, proxies, VSS. Managing and troubleshooting Microsoft Azure networks Experience of Wireless Networks. Provide 3rd level ICT Network Support within GLD Ensure all network related documentation is current and updated ITILv3 qualified to Foundation Level Manage systems security in accordance with ICT Security Standard (IS027001) Very strong customer focus & ability to build rapport with clients as well as peers Confidence and presence to deal with outsourcing, customers, suppliers and colleagues at junior and higher level Able to work under pressure and perform as a Leader, work to get an excellent understanding of business requirements Ability to define and meet deadlines and targets set as Business Analysis, well versed with reporting, documentation and full project lifecycle Experience of working to tight SLA/OLA's and deadlines Experience of change management process Working knowledge of MS Office, Visio and Project Ability to apply existing knowledge to resolve issues on unfamiliar systems Able to gather and analyse information Able to determine service impacts and risks Able to understand and articulate complex ideas Logical and rational approach to problems Able to prepare and deliver management briefings Excellent written and oral communications skills and able to communicate at all levels, technical and non-technical Ability to liaise and manage 3rd party suppliers Advantageous Knowledge of Websense Proxy TrendMicro Proxy PaloAlto Firewalls Knowledge of HP 3PAR technologies and iSCSI Knowledge of HP Converge System Cisco MDS Switches
- Company Name
- iO Associates - UK/EU
- Job Title
- eDV Cleared - Information Assurance Security Manager
- Job Description
- iO Associates are working closely with a growing consultancy in the NS&D sector, seeking an experienced Information Assurance Security Manager to strengthen their cybersecurity posture. This is an initially 12 months contract with the potential to be extended beyond. Due to the exciting nature of the role, you must hold and active UK*C DV Clearance to be eligible. The role requires a proactive professional to develop and enforce security policies, risk management strategies, and compliance frameworks while collaborating with cross-functional teams. Key Responsibilities: Policy & Compliance Develop, implement, and maintain information assurance policies, standards, and procedures. Ensure compliance with ISO 27001 and other relevant regulatory requirements. Oversee internal and external security audits to assess compliance. Risk Management Conduct risk assessments to identify, evaluate, and mitigate security threats. Develop and implement risk mitigation strategies to enhance security resilience. Security Infrastructure Management Oversee the design, implementation, and maintenance of security controls, including: Firewalls Intrusion detection & prevention systems Other critical security technologies aligned with the National Technical Authority standards. Work closely with IT teams to secure network infrastructure, servers, and endpoints. Incident Response & Investigation Develop and maintain a robust incident response plan. Lead and coordinate incident investigations before transitioning to a Business-as-Usual (BAU) function. Security Awareness & Training Develop and deliver security awareness programs to educate employees on best practices. Work with Subject Matter Experts (SMEs) to ensure a security-conscious workforce. Collaboration & Communication Work closely with internal departments to ensure cohesive security strategies. Communicate security initiatives, risks, and compliance updates to senior management. Team Leadership Manage or lead a team of security professionals to ensure the successful implementation of security policies and procedures. Provide guidance, mentorship, and support to team members, fostering a collaborative and high-performance environment. Key Requirements: Proven industry experience in IT Quality Assurance, Information Security, and Assurance. Certified Information Security Manager (CISM) or an equivalent qualification. ISO 27001 Auditor/Implementer certification is essential. Strong understanding of cybersecurity principles, risk management, and compliance frameworks. Experience managing or leading a team of security professionals. Excellent communication and collaboration skills.
- Company Name
- Adarma Security
- Job Title
- Senior Security Engineer
- Job Description
- Who we are We’re a company on a mission to protect the promise of cyber resilience. From banking and retail to food delivery and manufacturing, our team of passionate cyber defenders are committed to protecting the things that matter. We stand side-by-side with our customers every day providing innovative cybersecurity solutions that protect against threats, mitigate risk and deliver outcomes that make a remarkable difference. We want to defend cyberspace with people who share our passion for stopping cyber criminals. We empower access to equal opportunities, hiring people and their potential, not just a job description. What you will do We are actively recruiting for a Senior Security Engineer on a 6-month contract, Inside IR35, to act as a Darktrace subject matter expert for one of our clients. In this role, you will: Provide customers with support to develop and enhance their security controls and capabilities. This will include: Performing data analysis to determine how best to meet desired security controls Testing to ensure that the proposed technical solution works and resolving any issues in advance of go live into the production system Configure, maintain and enhance the toolset in accordance with the customer’s needs Create documentation such as policies, processes, toolkits, dashboards and management information to support the services offered to customers. Apply your high level of technical knowledge and experience to prepare and deliver technical presentations to customers and audiences at external conferences and events. Provide subject matter expertise to projects by proactively identifying and assessing gaps in security controls and providing / implementing appropriate technical solutions to address customer requirements. Share appropriate information relating to your area of expertise with both the internal and external technical community. Provide technical support to security teams as required in interpreting data to identify security issues, trends, possible security flaws and misconfigurations. What you will bring Experience working with Darktrace, including: Maintaining and performing upgrades on physical appliances, network sensors and the core platform. Provide insight and support the SOC team on incident triage. Optimisation and tuning of models, policies and configurations. Review current configuration, network settings and Antigena to ensure Darktrace is operating at optimal level Adaptable and willing to work on multiple tooling/platforms Perform risk assessments and recommend mitigation strategies for identified risks. SIEM/SOAR knowledge such as Splunk and Microsoft Sentinel Knowledge of industry best practices for cloud and cybersecurity Stay updated on current threat intelligence, trends, TTPs, and vulnerabilities. Control validation and threat assessments using AttackIQ.
- Company Name
- ApplianSys
- Job Title
- Contract Test Engineer - Linux/Python/Network Protocols
- Job Description
- ApplianSys is a UK-based entrepreneurial company specialising in network appliance products, including CACHEbox, DNSbox, and EDUGATEbox. With customers in over 160 countries, we are recognised globally for our excellence in delivering tailored solutions for challenging markets. As we continue to grow, our mission remains to achieve and sustain world-class performance across all facets of our business. We are entering a period of significant change in our engineering processes, prioritising automation, innovation, and AI to transform our product development cycle. This dynamic environment requires agility, adaptability, and cutting-edge expertise to ensure our products meet the highest standards of quality and performance in the coming years. ROLE OVERVIEW ApplianSys seeks a Contract Testing Engineer to spearhead transformative improvements in our QA and testing processes. This contractor role, spanning 6-12 months (with a 6+6 structure), aims to implement step changes in automation, testing methodologies, and AI-driven testing solutions. The successful candidate will collaborate closely with the development team to radically enhance our testing efficiency and product reliability. This is not a routine or permanent role but a dynamic and high-impact opportunity suited to individuals motivated by variety and innovation. KEY RESPONSIBILITIES Drive Transformational QA: Implement advanced testing methodologies and tools, focusing on automation and AI integration to redefine our testing approach. Comprehensive Testing: Conduct robust testing of CACHEbox, DNSbox, and EDUGATEbox products, ensuring their functionality, reliability, and performance in diverse scenarios. Automation Leadership: Design, develop, and deploy automated testing frameworks, streamlining QA processes and improving scalability. Collaborative Problem Solving: Work with developers to identify and resolve issues, ensuring continuous product improvement. Documentation & Feedback: Deliver detailed testing reports and actionable recommendations to drive iterative development. Best Practices Adoption: Establish and enforce QA best practices, including root cause analysis, issue tracking, and version control. Continuous Improvement: Stay ahead of industry trends in QA, automation, and AI tools, bringing innovative ideas to the team. REQUIRED SKILLS & EXPERIENCE Essential: Proven experience in delivering automation-driven QA transformation projects. Expertise in automation frameworks and tools, such as Selenium, pytest, and Python’s unittest. Deep understanding of networking protocols (HTTP, DNS, DHCP) and Linux systems. Strong knowledge of web application technologies (HTML, JavaScript, CSS). Demonstrated ability to collaborate with technical teams and deliver high-quality solutions. Proactive mindset with a focus on results and efficiency. Desirable: Exposure to AI-driven testing tools and methodologies. Experience with open-source technologies such as Squid, ISC Kea, and nginx. Hardware testing experience and familiarity with component selection processes. Track record of implementing QA improvements, particularly in caching or DNS environments. CONTRACT STRUCTURE Duration: 6-12 months (6+6 structure, with potential for extension based on outcomes). Location: Coventry, UK. Flexibility for remote work can be considered. Compensation: Competitive day rate commensurate with experience and qualifications. THE IDEAL CANDIDATE We are seeking a high-performing individual with a strong track record in transformational QA projects. The role is perfect for someone who thrives in dynamic environments, embraces variety, and seeks to leave a lasting impact through innovation and automation. This opportunity aligns with professionals motivated by change and improvement rather than long-term, routine roles. NEXT STEPS If you’re a proactive and skilled QA professional eager to take on a high-impact contract role, we encourage you to apply. Join us in reshaping the future of testing and quality assurance at ApplianSys.