cover image
Barclay Simpson

Technical Security Consultant

On site

United Kingdom

£ 100 / hour

Freelance

14-01-2025

Share this job:

Score my CV

Job Specifications

Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into the DevOps process. There will be a focus on working closely with DevOps and Engineering teams and providing security assurance throughout project and development life cycles.

Responsibilities:
Act as the main security point of contact & SME
Conduct High Level & Low-Level technical risk assessments
Conduct document and conceptual design reviews
Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation
Embedding security within DevOps (eg CI/CD pipelines), developing security requirements
On-demand Security assessment of various components like Web apps, Containers, Platforms etc
Reviewing security assessment reports and create a remediation pipeline
Experience in web application security assessments like SAST, DAST etc.
Act as the Security subject matter expert within Agile/waterfall project planning, development, and execution
Obtain and review all required artefacts as part of the application security framework
Drive security evaluation early in the cycles through iterative security testing
Provide advisory services and direction to development teams during development cycles
Manage control exemptions/remediations identified through projects
Advise on external regulatory requirements
Provide metrics for relevant areas of responsibility when required
Challenge stakeholders to ensure security is efficiently delivered
Mediate between development and security teams to facilitate business

As an ideal candidate, you will have expert knowledge of DevSecOps, Security Governance, NIST or OWASP (SAMM, DSOMM) and Cloud Security. You will have strong knowledge of threat & vulnerability management and penetration testing, although we do not require a penetration tester. You will also have a proven track record of success in a similar role.

About the Company

Barclay Simpson is a specialist international recruitment company that recruits Cyber Security, Technology and Governance professionals across internal audit, risk management, information / cyber security, technology and change, regulatory compliance, financial crime, resilience, data protection, data analytics, and legal & governance professionals across all sectors of the economy. Established in 1989, we are based in London and Frankfurt and recruit for clients throughout the UK, Europe, and the Middle East. Know more

Related Jobs

Company background Company brand
Company Name
Tech Domain
Job Title
IT Support Freelance/Network Engineer/IT Specialists
Job Description
We are looking for an ONSITE IT & Network Support Engineer/Technician to support Casual Freelancing type tasks in your area. Would you be interested in contractual tasks? you will be paid either on an hourly or daily/half-day basis. Tickets will be dispatched with respect to your area & you may support them as per your availability (weekdays, weekends). Tasks will be L1 & L2 IT/Networking related like desktop support, Server/Rack part (Hard disk drives, etc.) hardware installation & replacement. Provide on-site assistance (console access Router/Switch/Firewall etc.) to remote support. Base Skill Set: Expertise in System Desktop Administration, Customer Service, Incident/Change/Release management, and Support for various third-party applications on Windows Platforms Professionally trained & certified in IT Infrastructure Library & Windows Server Administration and also has a sharp focus on utilizing the programming techniques for various initiative activities Basic understanding of DHCP, DNS, IP addressing, fixing wireless Lan, Ethernet desktop configuration issues, and subnetting. Technical troubleshooting and hands-on experience with different OS such as iOS, Android, Windows, and Blackberry devices
Ely, United Kingdom
Hybrid
Freelance
12-02-2025
Company background Company brand
Company Name
Trilogy International
Job Title
Azure Security Consultant
Job Description
My client is looking for an Azure Administrator - Security specialist to join the team on a contract basis for 3 months inside IR35 with hybrid working. Responsibilities: Reviewing Current Security posture in Azure across all subscriptions Defining plan for remediating these through either manual changes or by implementation of policies (deployed to dev/test first then to prod subscriptions) Working with various departments to agree plan and timing of changes Going through our change control process Implementing required enhancements, Policy changes and settings changes Documenting all policies applied and any changes made. Ensure remediation resolves findings in our Qualys monitoring/reporting Please apply with your CV and number.
London, United Kingdom
On site
Freelance
12-02-2025
Company background Company brand
Company Name
Saunders Scott
Job Title
Chief Architect (security)
Job Description
3 Months rolling contract, Inside IR35, High daily rate to be discussed. Job Purpose The Chief Architect is responsible for creating and implementing the clients UK's Market-Facing Strategy and Roadmap. This will include the development of an Advisory capability to harness the existing and significantly grow and develop new technical and consulting capabilities to ensure a distinctive voice in the UK Cyber Market. You will also lead the newly developed Cyber/Information security Consulting Practice within and be accountable for its P&L. You will be a specialist in security in large projects as Technical Design Authority and CISO, Design, Build, Assurance and Governance in both public and private sectors, Banking and Financial Services, Manufacturing, Service Industries and HMG regulatory accreditation. Key responsibilities and deliverables include: Extremely experienced in Digital Transition/Transformation and Cloud First Strategy and Cyber Security Strategic Roadmap implementation of IS/IT security restructure programmes, projects of both a GRC and technical nature alongside frameworks such as ISO27001/2:2005/13, DORA, NIS 2, PCI-DSS, GDPR-DPO, NIST CSF SP800-53, PSD-2, FCA/PRA and MS Azure. Ownership of Strategic, Operational and Tactical IT Security and Risk Management, technical and legislative mandates ranging from plan, design, build and budgetary mandates. Programme/Project management of large and corporate security transformation and change programmes. Excellent leadership, communication and diplomacy skills, influencing and organisational qualities, through application of analytical and innovative approaches to problem solving, demonstrating the ability to build effective working relations with client, supply chains and business stakeholders and senior management. Development of the clients UK's external voice through: Public Speaking at partner, industry and company events Development of Points of View, Whitepapers and other literary content in concert with the Marketing department. Development content for VBlogs, blogs, offline video content Ensure the client is the partner of choice towards its clientele and ensure industry good practices are kept up to date alongside cyber security projects/programmes and Agile ways of working to support Next-gen cybersecurity & Services across a large portfolio of clients. Seek out and explore opportunities and gaps in the cyber security space for sales and pre-sales for cyber security mandates and to create SOWs and detailed proposal Skills & Experience Public Speaking at company, partner and industry conferences Working knowledge of key technology partners in the Cyber space including one of: Palo Alto, Microsoft, Zscaler, Splunk/Cisco. Collateral development including Whitepapers, Blogs, Points of View, Reference Architectures In-depth knowledge and working experience of at least one vertical sector from: BFSI, Energy & Utilities, Manufacturing, HMG, CNI. Development of Cyber and Information Security-Related Consulting Practices specifically in the area of Enterprise Architecture, GRC and Advisory capabilities. Full P&L ownership of Cyber Technology and/or Advisory Practices Programme/Project management of large and corporate security transformation and change programmes.
London, United Kingdom
On site
Freelance
12-02-2025
Company background Company brand
Company Name
Ubique Systems
Job Title
Cloud Network Design Consultant with Certificate in AZ-700
Job Description
7+ years of experience in “Enterprise Network design & Implementation” and a minimum of 2 years of experience as Azure Cloud Network Engineer with Certification in AZ-700 (Microsoft Certified: Azure Network Engineer Associate) Or 2years of experience as AWS Cloud Network Engineer with Certification in AWS Certified Advanced Networking Or 2 Years of experience in Oracle Cloud Infrastructure (OCI) Expertise in Planning of IP addressing & designing subnets. Expertise in designing and creating ExpressRoute Circuits and Site to Site VPN Tunnels. Extensive hands-on experience in designing high availability network architecture. Extensive hands-on experience on BGP, Static routing, route filters. Extensive hands-on experience in designing and implementing Classic Hub & Spoke Architecture in Azure. Experience in designing and implementing Azure Virtual WAN. Expertise in planning and designing NSGs and monitoring the same. Knowledge of Azure Firewall, Load Balancer, and traffic manager. Good Knowledge of On-Premise’s network connectivity and data flow across multiple segments. Knowledge and experience of monitoring all network components like Express Route, VPN, NSGs in Azure. Knowledge and experience on Virtual cloud networks, Fast Connect, Dynamic Routing gateway, IP Insight, Service endpoint, Oracle Interconnect to Azure Creating design documents like Network diagrams, HLD and LLD. Experience in PowerShell, Python, JSON scripting preferred. Ability to learn new technology in a fast-paced environment. Passion for customers and focus on delivering the right customer experience.
London, United Kingdom
Remote
Freelance
11-02-2025