Cyber Security Consultant

We are actively building diverse teams and welcome applications from everyone.
Role:
Cyber Security Consultant
Location:
Birmingham
(SCC operate hybrid working, which comprises of a mix of office and home working)
Contract Type:
Permanent
Salary Package:
£ 60,000 - £ 80,000
plus large company benefits, a broad flexible benefits scheme, and 2 paid-for volunteering days a year
Hours:
9.00 am – 5.30 pm, Monday – Friday
Interview Process:
2-stage process
Why SCC?

• An inclusive workplace
• Excellent package: solid basic and company benefits
• Hybrid working & core hours in line with role requirements
• Career development and life-long learning opportunities
• Opportunity to join Europe's largest privately-owned IT Company

Role Purpose
Our portfolio of cyber security products and services continue to grow at pace. SCC Cyber are pleased to present the opportunity for an experienced security risk professional to join our talented team enhancing our ability to meet increasing customer demand and maintain market leading delivery capabilities.

Focussed on GRC (Governance, Risk, and Compliance), the role holder will be responsible for delivery of consulting services in support of the wider SCC Cyber team. The role will deliver core information security governance, risk and compliance capabilities into our customers ensuring they are supported in their requirements to meet or align with key cyber security standards including but not limited to, ISO27001, NIST, and CAF.

The Cyber Security Consultant will be a subject matter expert working independently or as part of a delivery team where necessary to achieve customer requirements.

The successful candidate will demonstrate a passion not only for technology and security but also for people, building strong internal relationships across SCC and within our customer base.

They will support our growth through collaboration and engagement with key stakeholders to raise and promote awareness of SCC Cyber and its capabilities.

Security clearance or willingness to apply will be required for this role.
Key Responsibilities

• Engage with customers to deliver exceptional consulting services and support the growth of GRC service offerings.
• Act as a subject matter expert to advise upon and implement against key security standards and frameworks in support of customer requirements.
• Develop client policies and procedures that comply with corporate and regulatory standards.
• Maintain current knowledge relating to relevant security legislation, regulations, and industry standards that may affect SCC customers.
• Support the Principal Cyber Security Consultant in cross-business engagement and sales enablement activities to promote security consulting services.
• Have or build a significant web presence utilising tools such as LinkedIn and Vendor events to grow the reputation and visibility of SCC.
• Provide guidance to existing and potential customers on how the effective use technical and operational security measures can help reduce security risk within applicable security frameworks
• Work in support of the Principal Cyber Security Consultant in helping to further define our product set, enable go-to-market Cyber Security Advisory and GRC services through the design and implementation of service collateral for sales and delivery teams as required.

Skills And Experience

• Experience working either as a Consultant for an MSSP or within an information security risk management and governance role as a permanent member of a security team.
• Exceptional verbal and written communication skills to ensure the highest standard of presentation and deliverables for our customers and across the wider SCC.
• Verifiable and demonstrable expertise in information security requirements and capabilities across different industries and sizes of organisation.
• Verifiable and demonstratable experience with security standards and frameworks such as but not limited to NIST, ISO 27000-series, ISO 22301, CSA CCM, CIS and NCSC CAF.
• Awareness of technical security solutions such as SIEM, EDR, MDR, and XDR and their purpose within the context of an organisation's security programme.
• Ability to work closely with engineering teams to define requirements and processes associated with the effective use of technology solutions within our customer base.
• Familiarity with the Microsoft security stack and other market-leading vendor offerings that support the effective mitigation of security risk is desirable.
• Holding any of the following recognised Information Security qualifications is advantageous:
• CGRC
• CISM
• CISA
• CRISC
• ISO 27001 Lead Implementer / Lead Auditor
• ISO 22301Lead Implementer / Lead Auditor

About Us
SCC is Europe's largest privately-owned IT business, based out of the new £7m HQ office in Birmingham and we help clients succeed through IT transformation and exceptional customer experiences. We are a business where innovation is greater as we combine unique ideas, people and disciplines. We are a global company that is passionate about IT and where we look to simplify the complex.

We are an equal opportunities employer
SCC is committed to providing equal opportunities and a proactive and inclusive approach to equality and diversity in employment. No applicant or employee will be treated less favourably than another on the grounds of a protected characteristic which are defined as sex, sexual orientation, age, disability, gender reassignment, trade union membership or non-membership, marriage and civil partnership, pregnancy and maternity, race and religion or belief.

If you are selected for interview, and need any reasonable adjustments made for your interview, please let the SCC Talent Acquisition team know, at the point of scheduling.
*Diversity & Inclusion at SCC -
Sustainability at SCC -
Life at SCC - *