Security Consultant - Ransomware (Remote)
  • United Kingdom
  • RemoteWorker UK
1 year before
31.01.2024
Protect and Defend
Job Description

ADARMA began life in 2009, with a fierce determination to make cyber resilience a reality for every organisation, every day. This has guided us as we've adapted and grown to become one of the UK's leading threat specialists. Our journey is remarkable. But what's ahead is even more inspiring. Together, we're growing and transforming like never before. We're partnering with even more customers, and creat ing more innovative and resilient solutions. And we're taking our thinking and our whole sector further, every single day.

What you’ll do

We are looking for a Ransomware Subject Matter expert who has a breadth of security consultancy experience and proven expertise around ransomware to work with one of our leading banking clients on a contract basis. This is a contract role which can be based on either London or Edinburgh in a Working on a major programme within this bank, this individual will support a team of programme and security professionals by acting as a ransomware SME, guiding both technical and non-technical teams through best practice processes to mitigate, identify and resolve ransomware attacks.

What you’ll bring

To be considered for thie role, you will be/have;
Proven experience of working within cyber security- ideally in a consultative role AN expert level of knowledge of ransomware- including mitigation and detection techniques and processes
Experience of completing NIST compliant assessments (NIST 800-53) Stellar interpersonal skills with the ability to communicate complex technical scenarios to non-technical audiences

Location

This role would involve a mix of home working and travel to either our clients Edinburgh or London offices. Travel to our client sites may be required on occasion.

Adarma is striving to promote an inclusive company culture where everyone is empowered to achieve more. Having a diverse workforce that includes people with disabilities and unique backgrounds is paramount to achieving this. We believe in equal opportunities for everyone and fairness for all our employees and potential candidates. We are working to ensure that we provide our candidates with an environment in which they can thrive and reach their full potential. We are deeply committed to driving diversity and inclusion across our entire organisation and are continually working to ensure that our recruitment process is both fair and accessible to everyone.
If you are unable to apply for a job, access our careers page, or have concerns about the recruitment process, please do not hesitate to contact our People Team ( careersadarma.com ) and we will be happy to help you. Job Ref: CS276

Quick response
Required Knowledge
  • K0004   Knowledge of cybersecurity and privacy principles.
  • K0005   Knowledge of cyber threats an`d vulnerabilities.
  • K0007   Knowledge of authentication, authorization, and access control methods.
  • K0044   Knowledge of cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • K0059   Knowledge of new and emerging information technology (IT) and cybersecurity technologies.
  • K0070   Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
  • K0191   Knowledge of signature implementation impact for viruses, malware, and attacks.
Required Skills
  • S0147   Skill in assessing security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.).
  • S0367   Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • S0077   Skill in securing network communications.
  • S0079   Skill in protecting a network against malware. (e.g., NIPS, anti-malware, restrict/prevent external devices, spam filters).
  • S0003   Skill of identifying, capturing, containing, and reporting malware.
  • S0120   Skill in reviewing logs to identify evidence of past intrusions.
  • S0171   Skill in performing impact/risk assessments.
Required Abilities
  • A0010  Ability to analyze malware.
  • A0123  Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • A0120  Ability to share meaningful insights about the context of an organization’s threat environment that improve its risk management posture.