Information Security Consultant
Hybrid
London, United Kingdom
£ 75 / hour
Freelance
01-04-2025
Job Specifications
Job Title: Information Security Consultant
Location: Hybrid (1 Day/Week in Paddington, Remote for Rest of the Week)
Contract Duration: 6-Month Initial Contract (Likely Extension to 12 Months)
Contract type and Rate - Inside IR35 - £550 to £600 per day.
Job Overview:
We are seeking a skilled Information Security Consultant to join our clients team on an initial 6-month contract, with a strong possibility of extension to 12 months. This role involves providing expert guidance on ISO 27001 compliance, developing a comprehensive ISO 27001 Information Security Management System (ISMS) from scratch, conducting audits, delivering awareness training, and ensuring compliance with NIS2 directives.
Key Responsibilities:
ISO 27001 Implementation & Auditing:
Design, develop, and implement a robust ISO 27001-compliant ISMS from the ground up.
Perform internal and external audits, identifying gaps and recommending corrective actions.
Guide the organization through the ISO 27001 certification process.
NIS2 Directive Compliance:
Ensure alignment with NIS2 requirements for network and information security.
Advise on cybersecurity measures and incident response planning
Awareness Training & Stakeholder Engagement:
Develop and deliver engaging security awareness training sessions.
Work closely with stakeholders to drive a security-first culture.
Consulting & Advisory Services:
Provide expert advice on information security best practices and regulatory compliance.
Support risk assessments, vulnerability management, and remediation planning.
Key Requirements:
Proven experience in ISO 27001 implementation, auditing, and certification.
Strong knowledge of NIS2 directive and cybersecurity frameworks.
Experience delivering security awareness training.
Excellent communication and stakeholder management skills.
About the Company
At Intaso we are firm believers that not every business has the same Cyber/ Information Security talent shortages and demands a bespoke offering. Having extensive expertise of contingent, executive search, in-house, team-build and consultancy experience we are privileged to have the expertise to offer a complete set of innovative talent solutions tailored to every organisation. We pride ourselves on having a deep industry expertise, technical training, extensive networks and the softer skills to make intelligent matches on... Know more
Related Jobs
- Company Name
- Aspen Insurance Group
- Job Title
- Information Security Lead
- Job Description
- Information Security Lead Contract Duration: 6 Months Location: London Aspen Insurance, is seeking an Information Security Lead to support their Group CISO in driving the company's security programme. This role offers a unique opportunity to oversee and enhance daily cybersecurity operations, including risk management, compliance, and incident response. You will be at the forefront of managing security policies and ensuring the confidentiality, integrity, and availability of client data and business-critical systems. Lead Aspen's cybersecurity operations Manage risk assessment process and security policies Oversee investigation and resolution of security incidents What you'll do: As an Information Security Lead at Aspen Insurance, your role will be pivotal in supporting the Group CISO in driving Aspen’s security programme. You will have the responsibility of overseeing daily cybersecurity operations, including risk management, compliance, and incident response. Your leadership will be instrumental in managing the annual and ongoing risk assessment process, developing and maintaining security policies. You will also lead audit responses, monitor compliance, and oversee the investigation and resolution of security incidents. Collaborate closely with the CISO to align security and privacy compliance programmes Serve as the primary information security consultant for all departments Lead and manage cybersecurity projects within the CISO organisation Act as a backup to the CISO, providing senior-level guidance and managing escalations Oversee initial and periodic security risk assessments, develop and implement a comprehensive security risk management plan Create a culture of cyber security within the IT organisation and drive behavioural changes for the business Cooperate with industry regulators, internal legal entities, and organisation officers in any compliance reviews or investigations What you bring: As an Information Security Lead at Aspen Insurance, you bring a wealth of experience in technical management, information analysis, computer hardware, software, and IT systems. Your in-depth knowledge of the NIST Cybersecurity Framework will be invaluable in guiding our cybersecurity practices. Your strong business acumen will help us understand how service levels impact our profitability. Your ability to evaluate and refine security processes will ensure our operational efficiency. Strong understanding of technical management, information analysis, computer hardware, software, and IT systems In-depth knowledge of NIST Cybersecurity Framework and industry-standard security best practices Strong business acumen with understanding of how service levels impact business profitability Ability to evaluate and refine security processes for operational efficiency Highly effective planning skills enabling efficient task management Strong team player with ability to collaborate effectively in cross-functional environments Ability to build strong working relationships with stakeholders at all levels What sets this company apart: Aspen Insurance is a leading global insurance provider known for its commitment to excellence. They offer a supportive work environment that values collaboration and innovation. Their focus on continuous learning makes them an ideal place for professionals looking to grow their careers. They are committed to creating a diverse and inclusive workplace where everyone feels valued, respected, and able to contribute their best. What's next: Ready to take the lead in Information Security at a global insurance provider? Don't miss this opportunity! Apply today by clicking on the link. We look forward to receiving your application.
- Company Name
- Opus Recruitment Solutions
- Job Title
- GCP Security Architect
- Job Description
- Job Title: GCP Security Architect Contract:6-Month Rolling Contract (Outside IR35) Rate: DOE Location: Remote (Office in London) The client is seeking a skilled GCP Security Architect to drive innovative cloud solutions. In this role, the architect will design and manage infrastructure using Terraform, optimize BigQuery Storage, and integrate Vertex AI within GCP environments. Responsibilities include ensuring effective security measures and collaborating with various teams to achieve technical and business objectives. Key Responsibilities: Architect and manage scalable GCP environments using Infrastructure as Code. Integrate Vertex AI and manage machine learning pipelines. Design optimized solutions with BigQuery Storage. Implement continuous security monitoring with Wiz Security Control. Develop automation scripts to streamline operations. Ensure GCP security best practices and perform compliance checks. Requirements: GCP Professional Cloud Architect certification preferred. Proven IaC experience using Terraform for GCP. Extensive knowledge of GCP services, including Compute Engine and Cloud Storage. Proficient in Python, Bash, and automation tools.
- Company Name
- TieTalent
- Job Title
- Senior Security Network Architect
- Job Description
- About Our client is looking for a Senior Security Network Architect to join their team based in Central London on a six month initial contract. The Require a Candidate Who Has Overall 15+ years of experience in doing network assessment consulting focusing on network segmentation strategy and identifying NIST/Mitre control gaps Adequate documentation skills, creation of network diagrams, and comprehension of traffic flow. Develop a prioritised strategy and roadmap Certified in one of the leading technologies, Fortinet or Cisco. Experience in firewall compliance tools such as Tufin, AlgoSec, Skybox Experience in SDP, DNS security, PAC, VPN, IPS/DPS, Experience in SSE & Micro-segmentation capability * Experience in creating network segmentation strategy and scope, considering o East-west segmentation o North-south segmentation o Private and public cloud segmentation LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period Nice-to-have skills Fortinet Cisco VPN London, England Work experience Solutions Architect Cyber Security Specialist Cloud Architect Languages English
- Company Name
- Atrium
- Job Title
- Application Security Architect – London/Remote
- Job Description
- Application Security Architect – London/Remote Atrium UK are looking for an accomplished Application Security Architect to work closely with all levels of engineering and solution architecture teams to produce technical requirements and ensure solutions work together and fulfil business needs. This is a remote role with occasional visit to the London office. You must be based within the UK and be able to travel to the London Office when needed. PAYE/umbrella option/ Inside IR35. Investigate and resolve complex and high-priority incidents. Communicate to senior management on risk management concepts, as well as specific project risks and risk mitigation options/scenarios. Manage a portfolio of applications and projects from inception to completion, ensuring the correct security controls are put in place. Maintain a deep understanding of the business, our patients and healthcare-delivery models. This understanding includes key systems, key contacts, priorities and concerns within the business and IT. Ensure Information Security policies and procedures are up to date, relevant and adhered to, including security and technical standards. Perform vulnerability testing, risk analysis, and security architecture assessments. Relates well to constraints experienced by business partners and finds practical, win-win solutions. Analyzes customer needs; ensures solutions meet business and security requirements. Holds self and others accountable for meeting customer needs and expectations in a timely, professional manner. Maintains high personal accountability; takes ownership of issues, develops effective remediation approaches, and drives for results. Employs business acumen to develop appropriate solutions and solve problems - understands business risks and business objectives. Understands health care delivery and provider environments. Able to translate business needs into information security requirements. Ability to communicate technical security risks in a manner that resonates with business leaders. Ability to establish and manage to a planned set of related activities with a focus on hitting deadlines. Stay up to date with industry trends, best practices and regulatory standards that may impact product implementations. Essential: Extensive experience of Application security architecture Experience working in large and highly regulated organizations and agile environments. Experience with practical interpretation and application of policy and standards. Subject matter expert knowledge of the technology aspects of security. Experience with implementation of Security within development pipelines and Dev Ops with a good understanding of customer centric design principles and software development. Experience with GDPR, HIPAA & PCI frameworks Technical security certification like CISSP, CCSP, CEH, Microsoft Azure or AWS or equivalent Thorough understanding of Development and Architecture roles such as DevOps, SRE, Solution/Technical Architect and Senior Developer Working knowledge of secure development practices and standards such as OWASP and MITRE especially on cloud providers Excellent written and verbal communication skills with Stakeholder management and interpersonal skills at both a technical and non-technical level as well as at various levels of seniority. Identifying the need for new, or changes to existing, security patterns for UI, API, and micro services. Threat Modelling and dynamic security testing experience, to identify any security risks before live deployment Development experience in .NET and/or Java. Experience with scripting (e.g. python, PowerShell, bash). Experience of web application and API development (Typescript, React, HTTP, PHP). Demonstrable Understanding of cryptography concepts. Business analysis experience such as requirements gathering and modelling use cases and scenarios Knowledge of information security concepts and technologies such as IDS, email gateways and desktop security products, SIEM and SOAR platforms, web application firewalls and vulnerability management tools. Click Apply now to be considered for the Application Security Architect – London/Remote role