Senior Information Security Consultant

**Senior Information Security Consultant (QSA)**

PGI is a global consultancy that helps organisations build digital resilience. We deploy our people to implement solutions on behalf of clients or to support them in developing their own capabilities.

Our consultants help clients to ensure the confidentiality, integrity, and availability of their organisation's data and information. As well as implementing technical controls, we recommend processes and procedures, which have an equally important role in limiting risk. We support our clients to achieve and maintain information security standards and frameworks, including ISO 27001, PCI DSS, NIST Cyber Security Framework (CSF), and data protection regulations.

**What you’ll be doing**:

- Engaging confidently with clients and colleagues, delivering consultative and advisory expertise, within a pre-sales and delivery capacity.
- Providing hands-on PCI DSS compliance and consultancy services across a range of requirements for clients.
- Supporting the growth of PGI’s consultancy services in the UK and internationally in line with industry and globally recognised standards.
- Contribute towards the maintenance of PGI’s own accreditations, including ISO 27001, ISO 9001 and business continuity as well as compliance with data protection regulations.
- Maintaining your own continuing professional development, keeping up to date with security industry trends and best practices,

**On day one you will bring**:

- Proven people and relationship management skills.
- Demonstrable experience providing Information Assurance consultancy.
- Experience as a current Qualified Security Assessor (QSA).
- PCI SSC Qualified Security Assessor expertise and experience.
- Experience in or knowledge of the PCI DSS standard, NIST CSF, DORA, GDPR/DPA.
- ISO 27001 Lead Auditor, ISO 27001 Lead Implementer, Cloud Security or business continuity accreditations are highly desirable.
- CISM or CISA qualifications are highly desirable.
- Experience in conducting risk assessments and forming risk management policies.
- Experience in assessing an organisation’s cyber security maturity as well as remediation strategies.
- Excellent verbal and written communication skills, with the ability to present to clients and senior business stakeholders.
- A positive approach to problem-solving and possesses the ability to work smart and collaboratively to prioritise and set deadlines.

Abilities
- Engage directly with clients / external parties
- Explain how the law interacts with the role and how it applies
- Resolve an external-facing problem in a professional way, knowing when to escalate
- Plan a simple client engagement/project (Delivery and Support)
- Quote for a simple client engagement/project (Delivery)
- Write a proposal for a simple client engagement/project (Delivery)
- Hire for roles junior to this grade.
- Write a business case.
- Quality control of work before external submission
- Develop third-party relationships
- Mentor and develop other team members
- Monitor capacity and workload and interpret impact for business function
- Lean towards a Career Pathway with support, taking up opportunities when offered
- Set clear expectations for colleagues and team members when collaborating
- Review third-party delivery work, setting quality and performance expectations, and feeding back necessary information
- Delegate responsibility during absence, clearly communicating plans to all necessary stakeholders
- Write a learning and development plan for direct reports
- Self-assess performance against PGI Core Behaviours, Competencies and Skills
- Work independently and use initiative
- Prioritise and manage workloads effectively
- Collaborate effectively with Project Success colleagues to ensure projects are delivered on time and on budget
- Determine project/opportunity gross profit margin calculations.

**Diversity**

We're a British company that gets to work on a global scale. What makes us stand out? The amazing diversity of our team In our line of work, the problems we tackle are anything but ordinary and so require fresh perspectives and unique solutions from every corner of our team. By making sure our workforce is diverse, equitable, and inclusive, we're able to hold true to our values that enable every member of the team to thrive, while delivering novel solutions to novel problems.

**Accessibility**

We understand that everyone has unique needs, so we're all about making things easier for you. Whether it's overcoming physical or non-physical obstacles at work, we're here to help and are committed to implementing reasonable and relevant mitigations.

**Job Types**: Full-time, Permanent

**Benefits**:

- Casual dress
- Cycle to work scheme
- Employee discount
- Free parking
- Gym membership
- On-site parking
- Sick pay
- Work from home

Schedule:

- Monday to Friday

Supplemental pay types:

- Performance bonus

Application question(s):

- Do you have experience providing hands-on