Information Security Consultant - 3 Months (3 days p/w) - Outside IR35 - Remote
Chapman Tate are working in partnership with a company committed to delivering excellence in the realm of Information Security to hire an Information Security Consultant. With a focus on IT Disaster Recovery, Vulnerability Management, and PCI-DSS compliance, they strive to ensure the security and resilience of their customer critical assets. We are seeking a talented Information Security Consultant to drive initiatives aimed at enhancing our clients
customers security posture.
Role Overview:
As an Information Security Consultant, you will play a pivotal role in enhancing our organization's resilience to IT disasters, strengthening vulnerability management processes, and ensuring compliance with PCI-DSS standards. You will collaborate closely with cross-functional teams to identify gaps, develop strategies, and implement solutions to mitigate risks and safeguard our assets.
Key Responsibilities:
IT Disaster Recovery:
- Perform regular DR testing on highest priority applications/infrastructure.
- Assess current IT DR maturity and identify missing capabilities, such as BCM and IT asset management.
- Formulate an iterative approach to understand gaps and issues at a high level.
- Develop a well-defined IT DR roadmap to achieve objectives.
Vulnerability Management:
- Establish robust and measurable processes to identify and remediate vulnerabilities across the organization.
- Address configuration issues within scanning platforms, such as Qualys.
- Enhance vulnerability reporting reliability and produce a roadmap/plan for vulnerability management.
- Provide recommendations for operational remediation approaches and resource allocation.
PCI-DSS Compliance:
- Ensure compliance with PCI-DSS standards for core group face-to-face, telephone, and online card payments.
- Coordinate annual external assessments conducted by a Qualified Security Assessor (QSA).
- Support the GPS team in coordinating assessment work due to the scale of the business.
Additional Responsibilities:
Provide support for ongoing technology projects, offering review and design input to ensure alignment with security best practices.
Experience required:
- Proven experience in IT Disaster Recovery, Vulnerability Management, and PCI-DSS compliance.
- Strong understanding of Information Security principles, practices, and technologies.
- Excellent analytical and problem-solving skills.
- Effective communication and collaboration abilities.
To apply for this exciting opportunity, please follow the link and submit your CV.