IT Security Lead - Hybrid - Outside IR35
Pesaro Limited, Poplar, Greater London
IT Security Lead - Hybrid - Outside IR35
Salary not available. View on company website.
Pesaro Limited, Poplar, Greater London
- Full time
- Temporary
- Onsite working
Posted 1 day ago, 3 Nov | Get your application in today.
Closing date: Closing date not specified
job Ref: 69de93c4d9484b43aa8c2a873616a90d
Full Job Description
Immediate start for 6 months contract with likely extension, excellent client, hybrid working 1-2 days per week in Canary Wharf. Role Full spec available but in brief the following to be covered: Acting as the interface to all projects, providing resource estimates, IT Security advice, and assurance. Ensuring that IT Security deliverables are completed within agreed timescales and managing associated risks appropriately. Managing a team of four IT Security consultants working across the full portfolio of projects. Recruiting and onboarding additional IT Security Consultants as needed, based on project demand. Providing management oversight for the full project portfolio. Role is 50% Management and 50% hands on within project teams - planning and delivering Cyber Security Principles, creation of RFPs and RFQs, and project implementation.
- Extensive understanding and implementation of the IT Security environment, policies, guidelines and standards, including awareness of ISO 27001/2.
- Technical assessments of RFPs and third party partner selection in line with OJEU or similar governance structures.
- Demonstrable knowledge of technical security solutions covering modern Security solutions and Tooling.
- In-depth knowledge of drivers of cyber operations, cybersecurity terminology, methodologies including the MITRE framework and cyber threat intelligence frameworks. TECHNICAL SKILLS
- Demonstrable experience of conducting security assessments and threat identification, mitigation and remediation.
- Ability to guide projects to apply appropriate security standards and policies.
- Deep technical understanding of network security, security configuration and best practices for infrastructure services including Firewalls and penetration testing scoping.
- Working knowledge of technologies and tools involved in infrastructure-as-code utilising tools such as: PowerShell, Terraform, Ansible, Azure DevOps
- Working knowledge of technologies and tools to drive observability and infrastructure insight (monitoring/telemetry/logging)
- Expert knowledge of IDAM security controls and tooling
- Deep understanding of tooling integration/API management
- Expert understanding of CISCO ISE and Secure Network Analytics
- Good technical knowledge of the following is desirable: data encryption, data leakage controls, application integration, identity and access management, certificate management and database security.
- Technical experience of the following applications: Security auditing tools, AV, Firewalls, Proxy, SIEM, PAM.
- Ethical hacking background is advantageous