Security Controls Tester Consultant

Purpose:

The individual will be looking to deliver robust control testing, aligned with regulatory and internal standards, to ensure control design adequacy and effectiveness. The role supports RCSA processes and leads evidence-based evaluations.

Key Responsibilities:

• Evaluate and test security controls against NIST 800-53 requirements
• Execute scheduled control testing, document results, and analyse weaknesses
• Review and capture control evidence for audit and compliance purposes
• Collaborate with control owners and remediation teams to resolve findings
• Use Archer to record outcomes and align with risk control inventory

Skills & Experience:

• Expertise in control design, encryption, and testing (incl. vulnerability, pen testing)
• Familiarity with Archer and RCSA frameworks
• Understanding of both technical and non-technical control types (HR, systems, assets)
• Strong audit mindset and regulator-facing assurance experience