Information Security Consultant

Information Security Consultant - 3 Months (3 days p/w) - Outside IR35 - Remote

Chapman Tate are working in partnership with a company committed to delivering excellence in the realm of Information Security to hire an Information Security Consultant. With a focus on IT Disaster Recovery, Vulnerability Management, and PCI-DSS compliance, they strive to ensure the security and resilience of their customer critical assets. We are seeking a talented Information Security Consultant to drive initiatives aimed at enhancing our clients

customers security posture.
Role Overview:
As an Information Security Consultant, you will play a pivotal role in enhancing our organization's resilience to IT disasters, strengthening vulnerability management processes, and ensuring compliance with PCI-DSS standards. You will collaborate closely with cross-functional teams to identify gaps, develop strategies, and implement solutions to mitigate risks and safeguard our assets.

Key Responsibilities:

IT Disaster Recovery:

• Perform regular DR testing on highest priority applications/infrastructure.
• Assess current IT DR maturity and identify missing capabilities, such as BCM and IT asset management.
• Formulate an iterative approach to understand gaps and issues at a high level.
• Develop a well-defined IT DR roadmap to achieve objectives.

Vulnerability Management:

• Establish robust and measurable processes to identify and remediate vulnerabilities across the organization.
• Address configuration issues within scanning platforms, such as Qualys.
• Enhance vulnerability reporting reliability and produce a roadmap/plan for vulnerability management.
• Provide recommendations for operational remediation approaches and resource allocation.

PCI-DSS Compliance:

• Ensure compliance with PCI-DSS standards for core group face-to-face, telephone, and online card payments.
• Coordinate annual external assessments conducted by a Qualified Security Assessor (QSA).
• Support the GPS team in coordinating assessment work due to the scale of the business.

Additional Responsibilities:

Provide support for ongoing technology projects, offering review and design input to ensure alignment with security best practices.

Experience required:

• Proven experience in IT Disaster Recovery, Vulnerability Management, and PCI-DSS compliance.
• Strong understanding of Information Security principles, practices, and technologies.
• Excellent analytical and problem-solving skills.
• Effective communication and collaboration abilities.

To apply for this exciting opportunity, please follow the link and submit your CV.