Information Security Consultant (Insurance)

My client, a leading Insurance company are looking for an Information Security Consultant to augment the Information Security team to perform risk assessments of projects within the Americas Acceleration programme, provide guidance and acquire outcomes/decisions.

Please note this role will be a 12-month initial contract, inside IR35. Hybrid, 3 days in the office in the City of London.

Skills / Experience (required):

• Bachelor’s degree in computer science, Engineering, or related field with a minimum of 10 years of professional experience.
• Strong knowledge of working within an Agile Framework such as SAFe.
• Strong knowledge of performing project risk assessments (Required)
• Experience in performing Information Security technical risk assessments.
• Proficient in information security risk and governance frameworks (ISO 27005, EBIOS)
• Information Security and /or Information Technology industry certification (CISSP, CISM, CRISC, GIAC, CISSP or equivalent).

Responsibilities (will include but not be limited to):

• Review submission of IS Criticality Assessment (ISCA) questionnaire.
• Determine high level security requirements and project criticality, based on standard project activities and data classification from DP pre-screening.
• Work with assigned architect to ensure security requirements are finalized in design (High Level Design), review with Enterprise Architecture, Solutions Architecture, Cyber Security and Cyber Assurance.
• Work with Operational Resilience team and ensure compliance with standards.

Please send your CV to cmiller@strategicstaff.com for immediate review.