Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Deliver strategic security solutions and improve clients' security posture.
- Company: Join a forward-thinking company focused on information security.
- Benefits: Enjoy gym contributions, health plans, hybrid working, and extra annual leave.
- Other info: Dynamic role with opportunities for professional development and certifications.
- Why this job: Make a real impact in the world of information security while growing your career.
- Qualifications: Experience in security compliance and strong communication skills are essential.
The predicted salary is between 70000 - 80000 £ per year.
Based: Field-based, predominantly in the London area
Type: Full-time
Salary: £70-80k
Eligibility: You must be eligible to work in the UK
About the Role
As the Smartdesc Information Security Consultant, you will be working with the Information Security team and technical delivery team to deliver security solutions to our customers. You will work with Smartdesc customers providing strategic Information Security guidance, support and roadmaps, driving continuous improvement in their security posture. This will include identifying and overseeing a variety of security projects, including helping our customers to implement security controls, assessing against industry good practice, creating assessment reports to deliver to Senior Leadership Teams and improving organisations' security position. The role offers a wide range of work, from strategic Information Security governance and risk management to guiding our non-profit customers to get best value from the Microsoft Business Premium, E3 and E5 security offerings. You will also need to be confident presenting security information at all levels, from part-time volunteers to boards. This role will be customer facing requiring a keen eye for detail and proven ability of delivering Information Security good practice.
Responsibilities
- Identifying steps that organisations need to take to improve their security position and creating roadmaps for continuous improvement, often maximising the use of existing Microsoft licensing and supporting them through the process.
- Alignment of good practice frameworks and standards such as Cyber Essentials, NCSC CAF and ISO 27001.
- Ownership or oversight of key Information Security processes and procedures.
- Ownership of the Smartdesc MDR management service.
- Implementation and ownership of Information Security Risk Management programmes.
- Identifying and managing remediation actions to reduce risks.
- Ownership or oversight of Information Security Policies.
- Development and implementation of general and role/function specific Information Security Training and Awareness programmes.
- Raising, investigating and managing or supporting IT Security incidents ensuring any necessary follow up actions.
- Providing IT security support to business functions including digital teams, IT infrastructure and IT Service Desk.
- Development and ownership of the Information Security Internal Audit programmes.
- Oversight of rolling programmes of security tests, reviews and audits.
- Writing Information Security reports and delivering the findings to key stakeholders.
Key Skills
- Knowledge and experience with technology, security and DP related compliance, legal & regulatory frameworks and standards, including Cyber Essentials, ISO27001, PCI DSS, OWASP, GDPR etc.
- Knowledge and experience of the Microsoft stack. Purview experience is beneficial.
- Ability to demonstrate expert knowledge and understanding of information security good practice.
- Experience in working with technical and non-technical business personnel at various levels, articulating security risks in a manner appropriate to the stakeholders.
- Strong attention to detail.
- Knowledge of Information Security principles and concepts and knowledge of technical security controls.
- Previous consulting experience to SMEs, non-profits or educational settings would be preferred.
- A positive can-do attitude and a self-starter who can work under their own initiative.
- Information Security certifications such as CISSP or CISM are beneficial as are Microsoft certifications especially from the SC series such as the SC-400/401.
Benefits
- Gym membership contribution
- Health Cash Plan
- Increased annual leave with length of service
- Free annual leave on your birthday
- Length of service bonus
- Hybrid working
- Free Will Writing service
- And more!
Information Security & SOC Consultant employer: Academia Ltd.
Contact Detail:
Academia Ltd. Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security & SOC Consultant
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the Information Security field. Attend meetups, webinars, or even local events in London. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio or a personal website showcasing your projects, reports, or any security assessments you've done. This gives potential employers a taste of what you can bring to the table and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by practising common questions related to Information Security. Think about how you would explain complex concepts to non-technical stakeholders. Being able to communicate effectively is key, especially when presenting to boards or volunteers.
✨Tip Number 4
Don't forget to apply through our website! We love seeing applications directly from candidates who are genuinely interested in joining us at StudySmarter. Plus, it shows you're proactive and keen to be part of our team!
We think you need these skills to ace Information Security & SOC Consultant
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security & SOC Consultant role. Highlight relevant experience and skills that match the job description, especially your knowledge of security frameworks like Cyber Essentials and ISO 27001.
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how your background makes you a great fit for our team. Don’t forget to mention any consulting experience with SMEs or non-profits!
Showcase Your Communication Skills: Since this role involves presenting to various stakeholders, make sure to highlight your ability to communicate complex security concepts clearly. Include examples of past experiences where you've successfully conveyed security risks to both technical and non-technical audiences.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team at StudySmarter!
How to prepare for a job interview at Academia Ltd.
✨Know Your Security Frameworks
Make sure you brush up on key security frameworks like Cyber Essentials, ISO 27001, and NCSC CAF. Be ready to discuss how you've applied these in past roles or how you would implement them for clients. This shows you’re not just familiar with the terms but can actually put them into practice.
✨Showcase Your Communication Skills
Since this role involves presenting to various stakeholders, practice explaining complex security concepts in simple terms. Think about examples where you've successfully communicated security risks to non-technical audiences. This will demonstrate your ability to bridge the gap between technical and non-technical personnel.
✨Prepare for Scenario-Based Questions
Expect questions that ask how you would handle specific security incidents or improve a client's security posture. Prepare some real-life scenarios from your experience where you identified risks and implemented solutions. This will help you illustrate your problem-solving skills effectively.
✨Highlight Your Consulting Experience
If you have previous consulting experience, especially with SMEs or non-profits, make sure to highlight it. Discuss how you’ve tailored security solutions to meet their unique needs. This will show that you understand the challenges these organisations face and can provide valuable insights.