Security Consultant

Job Title: Security Consultant

Location: London (Hybrid)
Contract Duration: 6 Months
IR35: Inside IR35

We are looking for an experienced Security Consultant with a deep understanding of the financial services sector, focusing on the implementation and evaluation of security controls, ensuring regulatory compliance, and aligning security practices with industry standards.

• Design, implement, and assess security controls aligned with financial regulations and industry standards (e.g. ISO 27001, NIST, SWIFT CSCF).
• Ensure compliance with regulatory requirements such as DORA, SOX, PCI-DSS, GDPR, and manage audit and assurance activities.
• Conduct risk assessments, identify control gaps, and support remediation efforts across systems, projects, and third parties.
• Act as a security advisor to business and IT teams, translating technical risks into business context and guiding secure decision-making.
• Maintain and improve security policies, standards, and procedures to support operational resilience and regulatory readiness.
• Track and report on control maturity, compliance status, and emerging risks within financial operations.

• Proven experience in information security or compliance roles within the financial services industry (e.g., banking, investment, fintech, insurance).
• Strong working knowledge of security and risk frameworks such as ISO 27001, NIST CSF.
• Familiarity with financial regulatory requirements (e.g., FCA/PRA, DORA, SOX, PCI-DSS, GDPR).
• Experience supporting or leading audits, compliance reviews, or risk assessments in regulated environments.
• Understanding of cloud security, especially within AWS, Azure, or hybrid infrastructure used in finance.
• Relevant certifications: CISSP, CISM, CISA, CRISC, ISO 27001 Lead Auditor/Implementer, or equivalent.