Cyber Security Advisory Lead

**About Us**

We’re an award-winning innovative tech consultancy - a team of creative problem solvers. Since 1993 we’ve been finding better, more sustainable ways to solve complex technology problems for some of the world’s leading organisations and delivered solutionsthat millions of people use every day.

In the last 30 years we won several awards, including a prestigious Queen’s Award for Enterprise in the Innovation category for our Enterprise Agile delivery approach.

Operating from 26 locations across the world, we bring together teams of creative experts with diverse backgrounds and experiences, who enjoy working and learning in our collaborative and open culture and are committed to world-class delivery.

We want to continue to grow our team with people just like you

**About the Role**

We're looking to hire a hands-on Cyber Advisory Lead, to shape the next phase of BJSS’s cyber security journey.

You will be part of the Managed Services cyber security team and will take an active leadership role in developing our cyber security offer.

As a leader, you will be responsible for recruitment, mentoring, and building a team of experts as part of this role. You will take part in thought leadership activities as well as being a hands-on practitioner engaging with client advisory work.

You will work with the existing, established cyber team in winning new business, engaging in presales activities and advising our internal teams on best approaches to successful implementation of cyber services.

You will have a point of view on DevSecOps and what this means and be able to articulate this to clients as well as influencing our go to market position.

You’re a security expert who sets direction for others, comfortable leading teams of other highly experienced technologists and keenly aware of changes to the landscape. You have the ability to maintain a holistic big-picture view of cyber objectives andinterdependencies, are hands-on, and understand cyber security compliance practices and acknowledge the need to maintain a practical and pragmatic approach.

You will devise ways to do things better, drive forward change, learn and explore new technologies. You will be interested in sharing our knowledge with others, internal and external.

You’ll work in a fast moving, agile environment, within multi-disciplinary teams, delivering advanced technology solution to a range of clients across the globe. You will enjoy mentoring and possibly leading a team to deliver quality outcomes and successfullyembed security by design with proportionate appropriate cyber controls aligned to risk.

You will be a person our customers trust and will work with client senior stakeholder management (negotiation and influencing) across multinational organisations, including third party suppliers and delivery partners to ensure all aspects of cyber securityare embedded in transformation programs we undertake.

You’ll get to work with some of the brightest and best in the industry on some of the most exciting digital programmes around. Not only will this experience allow you to develop your skills, but you’ll also learn new techniques and refine your interests.

You will actively engage other disciplines to improve the understanding and effectiveness of how we work together to build better security solutions. BJSS emphasises collaboration across disciplines and champions a culture where everyone works together,owning and resolving challenges as a team.

**Skills and capabilities required include**:

- Strong effective leadership, communication, influencing at all levels (written and verbal) and successfully manage expectations
- Ability to undertake threat and risk assessments across varied technology stacks, identifying suitable mitigating controls
- Demonstrates clear leadership and an ability to communicate, influence and persuade across the organisation at senior levels, leading by example and aligning stakeholder groups around a common vision
- Prioritisation across multiple products, based on overall product team structure and delivery strategy
- Strong ability to work under pressure in a changing environment

**About You**

To be qualified for this role, you should hold a degree in a relevant field, like Cyber Security, Computer Science, IT or Software Engineering or the equivalent level of experience. An understanding of Microsoft, AWS or GCP technologies. If you’re naturallyinquisitive, a helper, enjoy assisting people with software or infrastructure issues and can explain technical details simply, we’d like to meet you.

Ultimately, you will be a person our customer’s trust. They will rely on you to provide timely and accurate solutions to their technical problems.

**Experience Required for the role**
- Broad technical knowledge of cyber security controls demonstrated by attainment of appropriate qualifications e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent - or with aspirations to work towards these certifications.
- Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance
- DevSecOps experience and experience of platform engineering
- Experience working in an agile delivery environment would be highly advantageous
- Specific cyber knowledge and demonstrable experience in at least one of the following areas: Cloud security, network security, digital security (multi-platform), infrastructure security, security by design, security architecture
- Understand the whole lifecycle including analysis, enterprise development, build & deployment, and support
- Thorough understanding of AWS or Azure cloud and security products
- Thorough understanding of adversarial tactics, techniques, and procedures
- Strong attention to detail with an analytical mindset and the ability to spot and investigate anomalous behaviour