At a Glance
- Tasks: Lead security audits and manage AWS environments while mentoring junior team members.
- Company: Dynamic cybersecurity firm focused on innovation and excellence.
- Benefits: Attractive salary, flexible working options, and opportunities for professional growth.
- Other info: Join a collaborative team with a focus on continuous learning and development.
- Why this job: Make a real impact in cybersecurity and shape the future of information security.
- Qualifications: Proven experience in information security and strong AWS skills required.
The predicted salary is between 70000 - 90000 € per year.
The Senior Information Security Consultant is a senior individual contributor role that spans both Cyber Security and Information Security Governance (GRC). The role owns security controls end-to-end and is directly accountable for ISO 27001 and/or SOC 2 audit outcomes, while remaining hands-on across AWS-hosted environments.
Key Responsibilities
- Own assigned areas of ISO 27001 and/or SOC 2 audits as technical control owner.
- Act as primary technical point of contact for auditors, leading walkthroughs and responding to queries.
- Define, review, and approve technical audit evidence and drive remediation of findings.
- Provide senior hands-on security expertise across AWS (IAM, logging, monitoring, network security).
- Own or oversee vulnerability management, including prioritisation, remediation, and audit-ready reporting.
- Provide senior input into SIEM, monitoring, and incident response.
- Oversee endpoint and SaaS security controls (e.g. Microsoft 365).
- Act as a senior technical authority and coach less-senior team members.
Requirements
Required Experience
Essential:
- Senior experience in a technical information security role.
- Direct ownership of ISO 27001 and/or SOC 2 audit controls, including auditor interaction and remediation.
- Strong hands-on experience securing AWS-hosted environments.
- Practical experience with vulnerability management, SIEM, and monitoring.
- Strong judgement and ability to explain technical controls to auditors and engineers.
Desirable:
- SaaS or cloud-native environments.
- Familiarity with NIST CSF or CIS Controls.
- Automation or scripting experience.
- Relevant certifications (ISO 27001, AWS Security, CISSP, etc.).
Senior Information Security Consultant in Leeds employer: GDS Link
As a Senior Information Security Consultant at our company, you will thrive in a dynamic and supportive work culture that prioritises employee growth and development. We offer competitive benefits, including flexible working arrangements and opportunities for continuous learning, all within a vibrant location that fosters innovation and collaboration. Join us to make a meaningful impact in the field of Cyber Security while enjoying a rewarding career path.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Information Security Consultant in Leeds
✨Tip Number 1
Network like a pro! Attend industry meetups, webinars, or conferences related to Cyber Security and GRC. It's a great way to connect with potential employers and show off your passion for the field.
✨Tip Number 2
Don’t just apply and wait! Follow up on your applications through our website. A quick email or LinkedIn message can keep you on their radar and show your enthusiasm for the role.
✨Tip Number 3
Prepare for interviews by brushing up on your technical knowledge, especially around ISO 27001 and SOC 2 audits. Be ready to discuss your hands-on experience with AWS and how you've tackled security challenges in the past.
✨Tip Number 4
Showcase your expertise! Create a portfolio or case studies of your previous work in vulnerability management and incident response. This will help you stand out as a senior candidate who can hit the ground running.
We think you need these skills to ace Senior Information Security Consultant in Leeds
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights your experience with ISO 27001 and SOC 2 audits. We want to see how you've owned security controls and interacted with auditors, so don’t hold back on those details!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for the Senior Information Security Consultant role. Share specific examples of your hands-on experience with AWS and vulnerability management.
Show Off Your Technical Skills:In your application, be sure to mention your strong judgement and ability to explain technical controls. We love candidates who can bridge the gap between technical and non-technical audiences, so let us know how you do that!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy!
How to prepare for a job interview at GDS Link
✨Know Your Standards
Make sure you’re well-versed in ISO 27001 and SOC 2 standards. Brush up on the specific controls you’ve owned in previous roles, as you’ll likely be asked to discuss your direct experience with these audits.
✨Showcase Your Hands-On Experience
Prepare to talk about your practical experience securing AWS environments. Be ready to share specific examples of how you've implemented security measures, managed vulnerabilities, or responded to incidents in the past.
✨Communicate Clearly with Auditors
Practice explaining technical concepts in a way that’s easy to understand. You might need to lead walkthroughs or respond to auditor queries, so being able to break down complex information is key.
✨Demonstrate Leadership Skills
As a senior consultant, you’ll be expected to coach less-senior team members. Think of examples where you’ve taken on a mentoring role or led a project, and be prepared to discuss your approach to leadership.
