Cyber Risk Consultant

Cyber Risk Consultant – Hybrid (2 days onsite in either Edinburgh or Stirling)
  
Meraki Talent is delighted to be partnering with a global Financial Services client who are looking for a Cyber Risk Consultant to be part of their Second Line of Defence.
  
Reporting to the Head of Technology Risk Oversight, you will be part of the wider Risk & Compliance function which has responsibility for providing independent guidance, advice, and insight on risk. 
  
You will be the SME in Cyber Security and will provide second line oversight across the business, delivering independent evaluation of the first line security controls. You will also have responsibility for developing and operating a second line model for overseeing cyber capabilities across the whole business.
  
Experience and Skills
  

• Extensive experience within financial services or consulting/technology companies in a cyber security or technology risk function.
• Relevant Certification in Cyber Security and cloud such as CISSP, CISA, CISM
• Significant knowledge of cyber security practices including risk management principles, architectural requirements, security engineering, threat intelligence, vulnerability management, and incident response.
• Experience leading cyber risk reviews.
• Able to deliver clear gap analysis against cyber security policy, standards and technology risk requirements, using industry best practice.
• Strong understanding of cyber security products and technologies utilized in Enterprise environments and good knowledge of Cloud, primarily Microsoft Azure.
• Excellent stakeholder management skills
• Previous experience as part of a security operations or incident response organization would be beneficial.
• Good knowledge of threat modelling techniques with some experience in developing threat models.

  
Please note: You must have full working rights in the UK and be prepared to be in the office 2 days a week in either Edinburgh or Stirling. The 2 days can be flexible.