As the Information Security Consulting Group Lead you will play a key role in delivering strategic cybersecurity consultancy to our clients across various industries. You will be responsible for ensuring that internal security frameworks align with best practices while also supporting external clients in navigating complex regulatory landscapes, risk management and security compliance.

 

Responsibilities:

• Lead our team of consultants in delivering high quality consultancy services.
• Provide expert Information Security guidance, ensuring both internal security governance and client compliance with industry regulations.
• Conduct risk assessments, develop mitigation strategies, and support compliance with ISO 27001, NIST, GDPR, and other relevant frameworks.
• Design and implement security policies, procedures, and control frameworks for both internal and external stakeholders.
• Lead security audits, gap analyses, and assist clients in preparing for regulatory assessments.
• Evaluate vendor security risks and recommend appropriate controls.
• Deliver cybersecurity awareness programs to internal teams and client organizations.
• Stay ahead of evolving regulatory requirements, cybersecurity threats, and best practices while contributing to thought leadership and industry events.

Required Skills & Experience:

• Two years in a similar role, with proven experience in GRC, cybersecurity frameworks and regulatory compliance (ISO 27001, NIST, GDPR, SOC 2, etc.).
• Strong knowledge of risk assessment methodologies and control implementation.
• Experience conducting security audits, compliance assessments and third-party risk evaluations.
• Ability to communicate effectively with technical and non-technical stakeholders, including C-level executives.
• Strong report writing and documentation skills, with the ability to translate complex concepts into clear recommendations.
• Highly organised, detail-oriented and able to manage multiple projects simultaneously.

Desirable Skills:

• Bachelor’s or Master’s degree in Cybersecurity, Information Security, Risk Management, or equivalent experience.
• Experience with cloud security compliance (e.g., Azure, AWS, GCP).
• Familiarity with info sec tools.
• Understanding of secure development practices.
• Industry certifications such as CISM, CISSP, CRISC, ISO 27001 Lead Implementer/Auditor, or equivalent.

Benefits:

• Pension scheme.
• Health Insurance.
• Flexible working and time in lieu.

How the hiring process works:

If your skills and experience align with our expectations, a member of our Talent team will reach out via email to begin an initial screening. This stage allows us to understand your experience and expectations while giving you the opportunity to learn more about the role and our company. If successful, we will outline the full interview process, which may include a combination of remote and on-site interviews. Depending on the role, a task or presentation may also be part of the process. Throughout, we aim to ensure a positive and transparent candidate experience, keeping you informed at each stage.

 

Diversity & Inclusion Mission Statement  

At Smarttech247, our mission is to keep our customers secure. Cybersecurity is a complex industry, therefore, in order to tackle its challenges and continue to innovate, we believe that a diverse workforce contributes to greater collective intelligence and ultimately, makes a stronger team – qualities that are needed in our fight against cybercrime.

Smarttech247 is proud to be committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment is decided on the basis of qualifications, merit, and business need.

 

 

Smarttech247