Essential Skills/Attributes:

• 3+ years in a client facing information/cyber security/GRC role or 5+ years in a directly related field/role (such as cyber/intelligence/security in UK Armed Forces, Law Enforcement, UK Intelligence Community, UK Government Departments)
• Degree in Cyber Security, Computer Science, or related subject; or genuine equivalent experience working in cyber-security, GRC, security audit etc
• Professional certifications (currently held) including but not limited to CISSP, CCSP, CISM, CRISC, CISA,
• Qualifications/experience in auditing against/implementing multiple security standards and frameworks, such as ISO 27001/2, NIST CSF, ISF CMMI, CIS, UK Govt/Defence standards, SANS
• Ability to translate technical requirements and their benefits to a non-technical audience and appeal to relevant stakeholders
• Experience in the production and briefing of threat intelligence products (not specifically cyber threat intelligence)
• Experience in conducting multi-source analysis to determine prioritised threats, risks and issues
• Excellent verbal, written communication, and presentation skills
• Ability to work independently and as part of a team
• Ability to travel to meet business need

PURPOSE, OBJECTIVES, AND REQUIREMENTS OF THE ROLE:

BlueVoyant Cyber Security Consultants work within the Professional Services team advising, supporting, and managing clients with multiple activities, including but not limited to:

• Technical & organizational security controls
• Cyber and digital transformation activities
• Remediation workstreams and roadmaps
• Policy & process implementation
• Information Security Maturity Audits/CMMI
• Certification or alignment with recognised industry standards
• Compliance with applicable regulations & legislation
• Building and implementing governance & risk management processes
• Design implementation and testing of security tooling
• BC/DR & Incident response capability building and testing
• Production of threat intelligence reports and research
• Supply Chain Risk Management

Consultants must possess and be able to demonstrate credibility and experience as well as currency in these fundamental skill sets.
Consultants will work with industry-leading proprietary and standard security tools, other experts, and capabilities to protect and defend client organizations and their people, intellectual property, and technology against wide-ranging threats in including nation states and Advanced Persistent Threat groups that act on their behalf.
Consultants must be pro-active, and able to lead manage and problem solve on multiple workstreams across varied client sectors by contributing to, managing, over-seeing, or supporting complex cyber-security and technology transformation programs, with limited oversight.
There is a base requirement to demonstrate understanding of and find ways to integrate activity with BlueVoyant colleagues across the globe, specifically Digital Forensics, Incident Response and Penetration Testing specialists as well as wider BlueVoyant service offerings when appropriate, to produce threat-aware products, services and outputs that are impactful, efficient, cohesive, and are enhanced with intelligence and automation.
BlueVoyant are trusted cyber-security partners and advisors to some of the most high-profile organizations, entities, and governments in the world. Deep and wide-ranging expertise & experience, credibility, and quick understanding of key client outcomes with the ability to determine effective remediation paths is critical. Consultants must have demonstrable ability to understand people, communicate technical solutions to stakeholders at all levels, support senior client decision making, and help client technical teams overcome difficult challenges, potentially in the wake of a significant security breach.

MAIN DUTIES AND RESPONSIBILITIES:

• Work to deliver, and directly support the delivery of any client facing activity deemed necessary, which may include work or travel out of hours.
• Deliver, lead & manage complex workstreams; take ownership of outputs and outcomes and provide reporting and feedback when required.
• Support, when necessary, the development of opportunities by contributing as an SME in response to client RFPs and/or the construction of proposal documents and responses.
• Develop timely, accurate reporting that can convey technical findings to non-technical audiences at all levels when necessary.
• When required, work with the Director of Cyber Advisory and Head Consultant to continuously improve capability, enhance & integrate service offerings, and build the Professional Services team.
• In addition to the duties and responsibilities listed, perform other duties assigned by Line Management from time to time.
• Comply with applicable legislation, codes of conduct, and company policy - such as Health and Safety procedures as outlined by the Companies Health and Safety Policy.

Essential Skills/Attributes:

• 3+ years in a client facing information/cyber security/GRC role or 5+ years in a directly related field/role (such as cyber/intelligence/security in UK Armed Forces, Law Enforcement, UK Intelligence Community, UK Government Departments)
• Degree in Cyber Security, Computer Science, or related subject; or genuine equivalent experience working in cyber-security, GRC, security audit etc
• Professional certifications (currently held) including but not limited to CISSP, CCSP, CISM, CRISC, CISA,
• Qualifications/experience in auditing against/implementing multiple security standards and frameworks, such as ISO 27001/2, NIST CSF, ISF CMMI, CIS, UK Govt/Defence standards, SANS
• Ability to translate technical requirements and their benefits to a non-technical audience and appeal to relevant stakeholders
• Experience in the production and briefing of threat intelligence products (not specifically cyber threat intelligence)
• Experience in conducting multi-source analysis to determine prioritised threats, risks and issues
• Excellent verbal, written communication, and presentation skills
• Ability to work independently and as part of a team
• Ability to travel to meet business needs