cover image
Harvey Nash

Cyber Security Specialist

On site

Edinburgh, United Kingdom

£ 450 / day

Freelance

29-10-2024

Share this job:

Job Specifications

Cyber Security Specialist| 6 Month Contract | (Outside IR35) | Onsite Required Weekly | Starting ASAP
Day Rate:£450 per day
Job Description:
Harvey Nash's client is looking for a person to be part of the cyber security team but working across our digital department and with business process owners, they must work to understand the client's core business priorities and our digital services. They must enhance processes to identify and assess technical risks and make prioritised recommendations for remediation. The focus will be to develop ongoing, cost effective, objective and where possible automated, risk management processes. The outcome must be to support data driven decisions through having trusted, accurate, up-to-date data available to those who need it. This will include supporting the development of risk management tools and potential integration with sources such as network, endpoint and service management. Close contacts in the team are the product owners, architects, developers and engineers. Close contacts in security are change aligned security consultants, the SecOps team and the head of security.
Key Responsibilities
Be aware of the current cyber threat landscape and industry best practices and standards.
Support initial scoping and risk assessment of a change project.
Interpret security best practice and accreditation requirements to assess security posture
Understand existing cyber security standards and controls to assess security posture
Carry out risk assessments and threat modelling
Review high and low level designs to identify risk.
Develop risk management processes to ensure risk data is captured and maintained.
Interpret vulnerability scan and pen test output and capture in risk management processes
Provide recommendations for risk treatment
Scope of management to cover both cyber and wider technical risks
Develop risk data model
Support development of risk management tooling
Technical scope
Security products (email filtering, AV, firewalls, WAFs, MS Defender)
Virtualisation platforms and operating systems, including Hyper-V and Windows Server.
Enterprise Systems (email, PKI, AD, GP, SCCM, Azure, M365, Intune)
Application platforms (MS Dynamics, Power Platform)
Cloud platforms (Azure)
Skills Required
Security and Risk assessment
In depth understanding of and experience with enterprise scale digital service provision
Demonstrable recent contribution to the development of risk processes and ongoing risk management
Ability to work well in an agile environment with internal colleagues and suppliers
Ability to self-start, accept ownership and see through improvements and benefits realisation
Ability to share knowledge and experience with colleagues and collaborate with business and technical colleagues
Desirable Skills
Experience with Azure, O365 and Power Platform
Experience with common risk management frameworks
Desirable Qualifications
Formal IT risk accreditation beneficial
This role has been deemed Outside IR35 by the client. Applicants must hold, or be happy to apply for, a valid Basic Disclosure Scotland. Please click the link to apply.

About the Company

We’re Harvey Nash, and we build amazing technology and digital teams. From senior appointments through to recruitment and project solutions, we are experts in the tech sector. Established in 1988, we have helped over half the world’s leading companies recruit, retain, source and manage the highly skilled tech talent they need to succeed in an increasingly competitive, global and technology driven world. With over 3.300 staff in more than 49 offices across Europe, Asia-Pacific and the U.S and Canada, we have built a rep... Know more

Related Jobs

Company background Company brand
Company Name
Crimson Limited
Job Title
Senior IT Security Officer - London
Job Description
Senior IT Security Officer - London Inside IR35 - £575 - £625 6 Months Hybrid working (1-2 days per week on-site) Senior IT Security Officer required for a leading client based in Central London. My client is currently seeking a Senior IT Security Officer to come on board to manage the Identity & Access Management (IAM) pillar within the IT Security, Compliance & Identity function, encompassing IAM-related standards, processes, and technologies. This role requires leveraging an understanding of business objectives and security needs to define challenges and establish priorities for both internal and external delivery teams. Key skills and responsibilities, Previous IT Security experience Previous Security Management experience Proven experience in managing domain services, including Active Directory (AD) and Azure Active Directory. Skilled in managing authentication and authorization across Cloud and On-Prem environments, with expertise in protocols such as LDAP, SAML, OAuth, and MFA, along with a strong track record in implementing SSO. Proficiency with PowerShell and automation tools. Experienced in designing and implementing secure systems, with the ability to lead reviews on complex security challenges when needed. Lead the management and strategic direction of Directory Services alongside the Product Owner. Familiarity with IT service frameworks, methodologies, and best practices such as ITIL v4 and Agile. Broad knowledge across various IAM capabilities (eg, Security Groups, JML, IGA, PAM, RBAC). Strong understanding of Microsoft IAM functionalities Oversee and drive delivery across Azure Active Directory (Entra ID) and Active Directory, serving as the Product Manager for these platforms. Support, facilitate, and oversee data assurance processes and controls across IAM, including backing the automation strategy and audit processes. Manage health and performance activities within the Directory Services function. Lead the authentication and authorization capabilities by defining requirements, establishing controls, and implementing technology to enhance value and mitigate risks. Direct the development and upkeep of IAM standards, procedures, and documentation. Interested? Please submit your updated CV to (see below) for immediate consideration. Not interested? Do you know someone who might be a perfect fit for this role? Refer a friend and earn £250 worth of vouchers! Crimson is acting as an employment agency regarding this vacancy
London, United Kingdom
On site
Freelance
29-10-2024
Company background Company brand
Company Name
Stott and May
Job Title
Senior Security Officer (IAM) | £575-£625 | Birmingham
Job Description
Senior Security Officer (IAM) | £575-£625 per day | Inside IR35 | 3-6 months Role: Senior Security Officer (IAM) Day Rate: £575-£625 per day Type: Contract Location: Remote IR35 status: Inside My client has an urgent requirement for a Senior IAM Officer on a 6 month contract (Inside IR35). 1 stage interview process! Key responsibility is the effective management of the IAM pillar within the IT Security, Compliance & Identity function and lead the delivery across Azure Active Directory (Entra ID) and Active Directory. This role is 1/2 days per week onsite in Birmingham or London and the daily rate on offer is £575-£625 per day. If you are interested in the Senior Security Officer (IAM) position, please apply with an up to date CV as soon as possible. Senior Security Officer (IAM) | £575-£625 per day | | Inside IR35 | 3-6 months
Birmingham, United Kingdom
On site
Freelance
29-10-2024
Company background Company brand
Company Name
Harvey Nash
Job Title
Security Consultant- Penetration Testing
Job Description
One of our global client is looking for a Penetration Tester to work remotely. If you are available and interested in this opportunity, please reply with your latest CV and best available time to discuss this. Below is the job specs for your reference; Job Title: Security Consultant Location: Remote Duration: ASAP until Dec 31st, 2024 Top Responsibilities: Delivering web application penetration tests to clients, creating reports, Carrying out security testing/coordinating with client's manager/report writing. Project: Cover for penetration testers on paternity leave, delivering web application penetration tests to clients. Top Required Skills: Computer Science or similar degree, Penetration testing certifications such as CRT, OSCP, OSCE, OSEE, SANS certifications. Consulting experience
England, United Kingdom
On site
Freelance
29-10-2024
Company background Company brand
Company Name
Empiric
Job Title
Security IT Engineer - SC - Government Transformational Programme - Long Term Contract - Remote
Job Description
Empiric have an opportunity for a skilled security consultant to join a central government organisation to work on a large scale transformational programme across a number of top-secret project. Experience in classified, top-secret and secure environments is essential (Active SC is Essential and NVPP3 is ideal) Key Qualifications: SC Linux Oracle ITC/TBM Patching Vulnerability Management Experience in secure environments Industry experience (Central Government/Defence) Key Details: Position: Security Engineer Duration: 6 months rolling (3-5 year contract) Active SC Remote 300 A Day Inside (No Flexibility) If you're ready please reach out via the platform below
United Kingdom
Remote
Freelance
28-10-2024