Audit, Risk & Compliance Consultant ‘QSA’

Audit, Risk & Compliance Consultant QSA | up to £75,000 | Gloucestershire & Home Based

Jonothan Bosworth Recruitment Specialists are currently looking for an Audit, Risk & Compliance Consultant, to be based from home & from our clients’ Gloucestershire location, with some requirement for travel to external client locations (dependent upon client and project demands).

++ To be suitable for this role, you should be a Qualified Security Assessor ++

THE BASICS:

As the Audit, Risk & Compliance Consultant QSA you will be working as part of our clients’ consultancy team, with a focus on cyber risk assessment and analysis.

This is an exciting opportunity to work as a stand-alone consultant or as a part of a wider delivery team to implement information security, governance and risk management processes and solutions for compliance projects.

Demonstrable evidence of providing full lifecycle information security consultancy across multiple security standards and security maturity models, is important. From the initial consultation and pre-sales phase to the delivery and ongoing BAU support including full lifecycle implementations (or part implementations) for Cyber Essentials, NCSC 10 Steps to Cyber, SANS Top 20, ISO27001, PCI DSS and NCSC Security projects for high profile clients will likely result in an immediate interview.

THE BACKGROUND:

If you are degree qualified with an appropriate related qualification or equivalent experience with several years’ management experience, coupled with demonstrable and extensive knowledge around client-facing business development, engagement delivery, practice development and thought leadership as it relates to the development, assessment and implementation of information security solutions, we’d like to hear from you.

We are keen to speak to QSA Consultants who can demonstrate an extensive knowledge of managing project work streams in a system security, controls or information security management environment, from the following information security domains:

-Security architecture and strategy (integrated risk management).

-Security function design and governance.

-Information security awareness.

-Interpreting security industry standards (ISO 27001/27002, PCI DSS, DPA, GDPR, NIST 800 series, COBIT)

THE ADDITIONAL STUFF:

QSA Consultants who can provide sound and pragmatic advice to our clients’ clients and demonstrate how cyber risks can be managed and mitigated, whilst working in collaboration with colleagues in the technical consulting team to forge innovative and lasting solutions to client issues and challenges will be sought after.

If you can identify and refer revenue generating opportunities for further account development and growth whilst providing occasional support for maintenance of internal certifications such as ISO 27001 / 9001 / 17025 / Cyber Essentials / CTAS then please apply today.

THE CERTIFICATIONS:

Any of the following certifications would be highly beneficial:

CISSP, ISO27001 Lead Auditor, CCP Senior / Lead IA Architect / SIRA / IA Auditor, PCI QSA or CISMP.

THE CONCLUSION:

Consultants who demonstrate deep security policy, standard and technical knowledge (not hands-on) with excellent client and stakeholder management skills will be of interest. If you can communicate complex solutions clearly and concisely at all levels; and are excited by the opportunity to assist clients with ongoing requirement(s) to perform interim and application /infrastructure level risk assessments, which are measured against a myriad of compliance and risk standards : you will be ideal for this role and should apply TODAY.

Contact Jonothan Bosworth Recruitment Specialists for more information.

CATEGORIES:

Penetration Tester

Penetration Tester / CTM (Check Team Member)  | Home Based | Up to 55,000

Jonothan Bosworth are working with a fantastic new client; they are an international award winning company who work with a number of high profile clients.

This is a fantastic opportunity if you are an experienced CTM/CTL looking to join an organisation with massive growth plans over the forthcoming years with huge progression opportunities.

THE SUMMARY:

We are looking for a Penetration Tester / CTM/CTL, to offer a totally professional customer service experience, whilst adhering to core values and company policies and procedures. If you can conduct the full range of effective and comprehensive technical assessments and consultancy services to the highest standards, whilst maintaining an accurate and up to date knowledge of information security issues, keeping abreast of new technologies, methodologies, techniques, vulnerabilities and market trends then please apply today.

We are looking for an individual who can produce concise and accurate technical reports and executive summaries, whilst participating in more specialist areas of technical assessments and consultancy services where required. If you can participate in the delivery of security management consultancy including health checks, risk assessments and compliance and standards based audits, where required we’d like to hear from you.

THE RESPONSIBILITIES:

·         Engage with and fully participate in research & service development projects.

·         Ensure professional, coherent and relevant communication using relevant language and at all times.

·         Complete all tasks in a manner that displays a commercial awareness; ensuring that project tasks are completed on time and on budget.

·         Where necessary assist the commercial team in the preparation of test scopes and proposals.

·         Identify opportunities for further business development and growth.

·         Carry out any other additional, reasonable and alternative tasks that may be required from time to time.

THE SKILLS:

If you have demonstrable experience in an IT security role to CTM level and have, or are able to attain SC clearance, and can demonstrate an excellent knowledge of penetration testing skills at infrastructure and application layers and keeps knowledge up to date, this could be the perfect job opportunity for you.

Knowledge of system configuration auditing including Windows & *NIX operating systems, network devices, firewalls, IDS/IPS devices, wireless technologies is important, and a good understanding of common security standards and regulatory compliance will hold you in good stead.

If you have excellent written and verbal communication skills, coupled with an ability to work effectively and positively within a team and willing to collaborate and readily share knowledge and skills, then get in touch with us to find out more.

THE QUALIFICATIONS:

Cyber Security related qualifications CTM / CTL

SC Clearance (or ability to attain this immediately)

Relevant degree/postgraduate degree (desirable but not essential).

This is a great opportunity, suited to Consultants holding a sound understanding of Cyber Security and able to work within a varied role assisting companies to improve their security maturity visibility.

Home based role with some visits to London &/or Cheltenham

CATEGORIES:

QA Tester

Senior Software QA Tester | Cheltenham | circa £35,000

Jonothan Bosworth Recruitment Specialists are working with an international award-winning software company, as they aim to grow their business further by bringing on board a passionate, driven and highly skilled QA Tester.

THE BASICS:

We are looking for a Senior Software QA Tester with strong knowledge and experience in test engineering and its best practices. If you can demonstrate the ability to write high quality tests and possess strong communication skills and be comfortable coaching other testers, we’d like to hear from you.

The ideal Senior Software QA Tester will join our clients’ dynamic agile software development team based in Gloucestershire.  

Any Tester with proven experience in testing web based applications; adhering to proven testing processes and a good understanding of automation, coupled with a proven track record of working within an agile team, testing and delivering quality code should apply TODAY.

THE SKILL SET:

Senior Software QA Testers with commercial experience on complex applications, who can ensure full traceability from the initial requirements to the final testing, with strong experience with relational databases, in particular MySQL/MariaDB will be sought after.

If you can estimate testing activities and adhere to project timelines : with a good understanding of testing techniques: automation, unit, integration, functionality, end-to-end, acceptance, performance, web service testing, with an abilty to troubleshoot problems and identify quickly the root cause of the problem you are likely to receive an interview request.

We are also looking for experience of systems integration technologies, including web services and APIs, knowledge of web applications architecture and experience of Agile development methodologies – Scrum, Kanban.

THE DESIRABLES:

Experience of using and managing Jira and Confluence software.

Experience on automation tools.

Experience on specification by example, gherkin syntax and BDD.

THE CONCLUSION:

If you want to work with large enterprises; helping organisations to identify and mitigate the risks inherent in today’s increasingly interconnected business environments, covering the full spectrum of information security requirements, then please APPLY TODAY.

CATEGORIES:

Pre Sales Consultant

Pre Sales Consultant | Nr Cheltenham | Circa 35k + 10k OTE

Jonothan Bosworth are working with an international award-winning company who work with a number of high profile clients; providing cyber & security solutions to an extremely high level.

This is a fantastic opportunity if you are an experienced Sales Consultant looking to join an organisation with massive growth plans over the forthcoming years with huge progression opportunities.

THE BASICS:

As the Pre Sales Consultant, you will be working with an immensely skilled, incentivised and high energy team, and you’ll be rewarded with a highly competitive salary and bonus structure, in addition to market leading benefits.  

In your capacity, you will provide support to both the new business and account management teams; creating scopes and statements of work for inclusion in proposal and tender responses.

This is a ‘pivotal’ role working with the sales team, the project management office and the consultancy teams.

THE KEY RESPONSIBILITIES:

·       Liaising with external clients to understand technical security testing requirements and translate these into concise scopes.

·       Attending scoping calls / meetings with clients to capture testing requirements.

·       Documenting detailed statements of work with clear pre-requisite requirements.

·       Possessing a sound knowledge of IT environments with the ability to understand technical architecture documents.

·       High and low level design documentation skills with an ability to analyse documents to produce statements of work.

THE CONCLUSION:

If you live a commutable distance from Cheltenham – have a technical sales background and possess Information security domain knowledge, then my client would like to talk to you TODAY.

Please contact Jonothan Bosworth Recruitment Specialists ASAP.

CATEGORIES:

PHP Developer

Jonothan Bosworth Recruitment Specialists have a great opportunity – working for a progressive and forward thinking organisation, based in Gloucestershire.

…The salary is paying up to 60k

The organisation is commutable from:

Cheltenham | Swindon | Bristol | Worcester | Oxford | Banbury | Leamington Spa | Stratford upon Avon | South Wales 

If you are an ambitious, hungry developer with a desire to enhance your skill set and grow with a business that offers salary reviews regularly and great company incentives, then please apply today!

Our client is looking for someone with at least 2 years’ experience who is hoping to join an organisation for the long term. The role requires proven experience developing web based PHP applications in an object oriented manner. You must have a proven track record of working with an agile team, developing and delivering quality code.

Any developer with commercial experience working on Object Oriented PHP; also with experience of XML, HTML, CSS, MVC FRAMEWORKS (ZEND Preferably), Git, Mercurial and Subversion will be sought after.

You will also need to have strong exposure to MySQL as this will be used every day.

++ If you are not looking for a new challenge – we offer £250 Selfridges Vouchers for ANY successful referral ++

Please contact the team at Jonothan Bosworth Recruitment Specialists for immediate consideration.

CATEGORIES:

Penetration Tester

Penetration Tester (CTM) | Circa £55,000 | Nr Cheltenham

Jonothan Bosworth Recruitment Specialists are working with an international award-winning software company, as they aim to grow their business further by bringing on board a passionate, driven and highly skilled Penetration Tester and/or Security Consultant.

THE BASICS:

As the Penetration Tester / Check Team Member, you will be offering our clients’ clients a totally professional customer service experience, whilst adhering to core values and principles, conducting the full range of effective and comprehensive technical assessments and consultancy services to the highest standards.

Penetration Testers who can maintain an accurate and up to date knowledge of information security issues, keeping abreast of new technologies, methodologies, techniques, vulnerabilities and market trends whilst producing concise and accurate technical reports and executive summaries, in line with client and company expectations in accordance with the QA manual will be sought after.

We are looking for someone who can engage with and fully participate in research & service development projects.

Individuals who are commercially aware; able to manage expectations – ensuring that project tasks are completed on time and on budget, and where necessary can assist in the preparation of test scopes and proposals – identify opportunities for further business development and growth should get in touch ASAP.

THE EXPERIENCE:

Penetration Testers with experience in an IT security role to CTM level and have, or be able to attain SC clearance are likely to receive an immediate interview request, and those that can demonstrate an excellent knowledge of system configuration auditing including Windows & *NIX operating systems, network devices, firewalls, IDS/IPS devices, wireless technologies are highly desirable.

A good understanding of common security standards and regulatory compliance, coupled with an ability to work effectively and positively within a team and willing to collaborate and readily share knowledge and skills is also good trait.

Great organisation skills and the ability to work in a pressurised environment whilst working towards and achieving deadlines will also be of interest.

THE CONCLUSION:

Any Penetration Tester with Cyber Security related qualifications CTM / CTL / QSTM / SST : who is also SC Cleared (or has ability to attain this immediately), should contact Jonothan Bosworth Recruitment Specialists for immediate consideration.

CATEGORIES:

Software Consultant

Software Consultant | UK Wide | Up to 85,000

Jonothan Bosworth are working with a fantastic new client; they are an international award winning company who work with a number of high profile clients.

This is a fantastic opportunity if you are an experienced Software Consultant looking to join an organisation with massive growth plans over the forthcoming years with huge progression opportunities.

THE SUMMARY:

The ideal Software Consultant should take ownership of the delivery of software projects, including documenting functional and technical requirements, running requirements, gathering and reviewing sessions with customers and managing the implementation and delivery to defined requirements.

We are looking for an individual to cover all aspects of the software implementation cycle including consultancy, requirement gathering, workshops, configuration, data migration and user training.  It will be necessary to participate in the early discussion, implementation and delivery of the software to the end client.

This is an exciting opportunity to be the internal and external subject matter expert (SME) within our clients’ business and across the customer base; the role requires extensive knowledge and experience of the implementation of Cyber Security related Governance, Risk and Compliance programmes in the industry.

THE RESPONSIBILITIES:

  • Interacting and interfacing with customers to support the implementation of requirements, through the Cyber Management Platform.
  • Analysing customer requirements to deliver specified solutions that meet customer requirements.
  • Understanding and delivering the services that have been agreed through the sales process.
  • Analysing, interpreting and documenting detailed business requirements.
  • Provide on-site and remote user training and administering training to customers.
  • Ensuring that the reporting and analysis outputs meet customer requirements.
  • Monitoring customer progress during initial deployment and handover to the internal product support team.

In addition to the delivery process, the role requires the Consultant to engage across all user bases, ensuring that customers are happy and that the software is being utilised efficiently, and you will quickly gain an in-depth knowledge of the Solution used and maintain knowledge of the Cyber Security industry best practices in addition to:

·         Communicating client feedback and industry updates to the product design team.

·         Assisting the account management and delivery teams with customer retention.

·         Assisting the Risk and Compliance consultants in the deployment of the software to their clients.

·         Providing cyber security consultancy services to clients.

This is a field based role, and therefore, extensive UK travel may be required.

THE SKILLS:

If you have proven experience with software Cyber Management Platforms/products, especially with regard to successful implementation and delivery and can demonstrable experience of implementing and delivering software solutions then please be in touch.

A good understanding of the software development processes and lifecycle, coupled with knowledge of industry standards such as ISO27001, PCI DSS, SOX, DPA, COBIT, Cyber Essentials, ISO 90001, ISO 3100, ISO 22301 will hold you in good stead.

If you can also demonstrate a good understanding of the SDLC (software development lifecycle), coupled with excellent verbal and written communication and presentation skills, excellent attention to detail and documentation and excellent time management skills, then get in touch with us to find out more.

THE QUALIFICATIONS:

Any of the following qualifications and certifications would be highly beneficial but not essential:

·         Bachelors degree

·         CISSP

·         ISO27001 Lead Auditor

·         PCI QSA

·         CISMP

·         CCP SIRA

This is a great opportunity, suited to Consultants holding a sound understanding of Cyber Security and able to work within a varied role assisting companies to improve their security maturity visibility.

This is essentially a field based role and UK travel will form part of your role.

CATEGORIES:

Risk & Compliance Specialist

Risk & Compliance Specialist | Nr Cheltenham | £55,000

Jonothan Bosworth Recruitment Specialists are working with our newest client who are based in Gloucestershire. This is an exciting opportunity for someone already operating as a Risk and/or Compliance Specialist.

Working with large enterprises, our client helps their clients to identify and mitigate the risks inherent with interconnected business environments.  The ideal candidate for this role will be able to offer & present our clients portfolio of solutions which include a wide range of technical assurance services, complemented by a wealth of security management and risk assessment options, covering the full spectrum of information security requirements.

THE PRE-REQUISITES:

The ideal candidate will support our clients’ clients, including major High Street retailers, Healthcare companies, Finance & Insurance companies as well as some Local / Central Government departments, by working in a stand-alone Risk & Compliance Consultant position, supported by the wider security team.

In this role you will provide full lifecycle Information Security Consultancy across PCI DSS and ISO 27001 security standards, from the initial consultation and pre-sales phase to the delivery and ongoing BAU support. You will also provide subject-matter expertise to various projects, delivering business solutions that impact security compliance certifications.

Our client is offering the opportunity to be contractually based from home or from one of their office locations (London or Gloucestershire) and you will be expected to travel 3-4 days per week to client locations (dependent upon client and project demands).

Identifying and referring opportunities to the Sales Team for further business development and growth is an important part of this role also.

THE EXPERIENCE:

If you have extensive knowledge of implementing security strategies – consulting security solutions to clients, then we’d like to hear from you TODAY!

Aligning and integrating our client’s strategy with corporate security and business goals, such as:

  • Establishing, communicating and maintaining a charter for the security management function.
  • Developing and maintaining strategy, mechanisms for policy enforcement & definition of ownership, monitoring mechanisms, and process and controls.
  • Designing and maintaining security architecture both at the enterprise and solution levels.
  • Demonstrating extensive knowledge and success with assisting on, client-facing business development, engagement delivery, practice development and thought leadership.

…Candidates that can demonstrate an extensive knowledge of managing project work streams in a system security or information security management environment, from the following information security domains:

  • Security Architecture and Strategy.
  • Security Function Design and Governance.
  • Information security awareness.

…Candidates that can demonstrate extensive knowledge and success interpreting security industry standards (ISO 27001/27002, PCI DSS, DPA, NIST 800 series, COBIT), especially as it relates to the following:

  • Building management systems and/or programs.
  • Managing internal controls, risk assessments, business process and internal IT control testing or operational auditing.

…will receive immediate consideration.

Proven Risk & Compliance Consultants with deep security policy, standard and technical knowledge (not hands-on) with excellent client and stakeholder management skills that can communicate complex solutions clearly and effectively at all levels will be highly desirable.

THE QUALIFICATIONS:

Any of the following will be considered:

  • CISSP
  • ISO27001 Lead Auditor
  • CCP IA Architect / SIRA / IA Auditor
  • PCI QSA
  • CISMP

This is fantastic company, with great plans for continued growth, so if this sounds like the right opportunity for you, please contact Shimron at Jonothan Bosworth Recruitment Specialists TODAY!

CATEGORIES: