Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Deliver strategic security solutions and improve clients' security posture.
- Company: Smartdesc, a forward-thinking company focused on information security.
- Benefits: Competitive salary, gym membership, health cash plan, and hybrid working.
- Other info: Dynamic role with opportunities for professional growth and development.
- Why this job: Make a real impact in the world of information security while working with diverse clients.
- Qualifications: Experience in information security and knowledge of compliance frameworks.
The predicted salary is between 70000 - 80000 £ per year.
Overview
- Field-based, predominantly in the London area
- Full-time
- Salary: £70-80k
- Eligibility: You must be eligible to work in the UK
About The Role
As the Smartdesc Information Security Consultant, you will be working with the Information Security team and technical delivery team to deliver security solutions to our customers. You will provide strategic Information Security guidance, support and roadmaps, driving continuous improvement in their security posture. This includes identifying and overseeing a variety of security projects, helping customers implement security controls, assessing against industry good practice, creating assessment reports for Senior Leadership Teams, and improving organisations' security position. The role offers a wide range of work, from strategic Information Security governance and risk management to guiding non-profit customers to get best value from Microsoft Business Premium, E3 and E5 security offerings. You will need to be confident presenting security information at all levels, from part-time volunteers to boards. This role will be customer-facing, requiring a keen eye for detail and proven ability to deliver Information Security good practice.
Responsibilities
- Identifying steps that organisations need to take to improve their security position and creating roadmaps for continuous improvement, often maximising the use of existing Microsoft licensing and supporting them through the process.
- Alignment of good practice frameworks and standards such as Cyber Essentials, NCSC CAF and ISO 27001.
- Ownership or oversight of key Information Security processes and procedures.
- Ownership of the Smartdesc MDR management service.
- Implementation and ownership of Information Security Risk Management programmes.
- Identifying and managing remediation actions to reduce risks.
- Ownership or oversight of Information Security Policies.
- Development and Implementation of general and role/function specific Information Security Training and Awareness programmes.
- Raising, investigating and managing or supporting IT Security incidents ensuring any necessary follow-up actions.
- Providing IT security support to business functions including digital teams, IT infrastructure and IT Service Desk.
- Development and ownership of the Information Security Internal Audit programmes.
- Oversight of rolling programmes of security tests, reviews and audits.
- Writing Information Security reports and delivering the findings to key stakeholders.
Key Skills
- Knowledge and experience with technology, security and DP related compliance, legal & regulatory frameworks and standards, including Cyber Essentials, ISO27001, PCI DSS, OWASP, GDPR etc.
- Knowledge and experience of the Microsoft stack. Purview experience is beneficial.
- Ability to demonstrate expert knowledge and understanding of information security good practice.
- Experience in working with technical and non-technical business personnel at various levels, articulating security risks in a manner appropriate to the stakeholders.
- Strong attention to detail.
- Knowledge of Information Security principles and concepts and knowledge of technical security controls.
- Previous consulting experience to SMEs, non-profits or educational settings would be preferred.
- A positive can-do attitude and a self-starter who can work under their own initiative.
- Information Security certifications such as CISSP or CISM are beneficial as are Microsoft certifications especially from the SC series such as the SC-400/401.
Benefits
- Gym membership contribution
- Health Cash Plan
- Increased annual leave with length of service
- Free annual leave on your birthday
- Length of service bonus
- Hybrid working
- Free Will Writing service
- And more!
Information Security & SOC Consultant employer: Academia the Technology Group
Contact Detail:
Academia the Technology Group Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security & SOC Consultant
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the industry. Attend meetups, webinars, or even local events in London. The more people you know, the better your chances of landing that Information Security Consultant gig.
✨Tip Number 2
Show off your skills! Create a portfolio or a personal website where you can showcase your projects, reports, and any relevant certifications. This is your chance to demonstrate your expertise in security frameworks like Cyber Essentials and ISO 27001.
✨Tip Number 3
Practice your pitch! You’ll need to present security information to various stakeholders, so rehearse how you’d explain complex concepts in simple terms. Confidence is key when you're in front of potential employers.
✨Tip Number 4
Apply through our website! We’ve got loads of opportunities waiting for you. Tailor your application to highlight your experience with Microsoft security offerings and your consulting background. Let’s get you that job!
We think you need these skills to ace Information Security & SOC Consultant
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security & SOC Consultant role. Highlight your relevant experience and skills, especially those related to security frameworks like Cyber Essentials and ISO 27001. We want to see how you can bring value to our team!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how your background aligns with our mission at StudySmarter. Don’t forget to mention any consulting experience you've had with SMEs or non-profits.
Showcase Your Communication Skills: Since this role involves presenting to various stakeholders, make sure to highlight your communication skills in your application. We love candidates who can articulate complex security concepts clearly, so share examples of when you've done this successfully.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you don’t miss out on any important updates. Plus, it shows you’re keen on joining our team!
How to prepare for a job interview at Academia the Technology Group
✨Know Your Stuff
Make sure you brush up on your knowledge of information security frameworks like Cyber Essentials and ISO 27001. Be ready to discuss how you've applied these in past roles, as well as any relevant Microsoft technologies you've worked with.
✨Tailor Your Examples
When discussing your experience, tailor your examples to the specific responsibilities mentioned in the job description. Highlight your consulting experience with SMEs or non-profits, and be prepared to explain how you’ve helped organisations improve their security posture.
✨Practice Your Presentation Skills
Since this role involves presenting to various stakeholders, practice explaining complex security concepts in simple terms. You might want to do a mock presentation to a friend or colleague to get comfortable with articulating your thoughts clearly.
✨Show Your Enthusiasm
A positive can-do attitude goes a long way! Make sure to express your passion for information security and continuous improvement. Share why you’re excited about the opportunity to work with Smartdesc and how you can contribute to their mission.