Cybersecurity risk consultant

4657412

View Saved Jobs

Save Job

Job type
Contract
Location
Swindon
Working Pattern
Full-time
Specialism
Cyber Security
Industry
Energy, Utilities & Mining
Pay
Up to £70 per hour Outside IR35
Closing date
24 Feb 2025

Share Job

Cybersecurity risk consultant (Supply chain)

Your New Role

1 day per week on site in Swindon
Competitive hourly rate Outside IR35
6-month contract role

As a Supply Chain Cyber Risk Management Specialist, you will support the OT Security Department, particularly the Governance, Risk, and Compliance Team, with activities and processes related to Supply Chain Cyber Risk Management. Your responsibilities will include:

Performing and supporting supply chain cybersecurity risk assessments across various vendor and supplier relationships, ensuring compliance with regulatory requirements (e.g., NIS2, KRITIS).
Enhancing risk assessment methodologies and tools specific to the cybersecurity supply chain domain.
Collaborating with stakeholders to implement risk mitigation strategies based on assessment findings.
Drafting and maintaining standards, procedures, and processes to ensure supply chain cybersecurity resilience and regulatory alignment.
Supporting the drafting and implementation of training for stakeholders on cybersecurity supply chain risk management best practices.
Monitoring, tracking, and advising on supplier-related cybersecurity risk findings and follow-up actions raised during assessments.
Supporting internal and external audits related to supply chain cybersecurity, preparing relevant stakeholders and documentation.

What You'll Need to Succeed

In-depth knowledge of cybersecurity standards and frameworks (e.g., NIS2, ISO 27001, ISO 27017, B3S) and experience with risk assessments in supply chain contexts.
Proven experience implementing regulatory requirements, designing and/or auditing governance systems, and working on projects within the supply chain cybersecurity domain.
Familiarity with contract management, vendor risk assessment tools, and associated workflows.
Technical knowledge of threats and vulnerabilities in the supply chain context, including third-party risks and risk mitigation strategies.
Proficiency in Microsoft Office Suite (Excel, PowerPoint, Word), with experience in using data analysis tools or risk management platforms being a strong plus.

What You Need to Do Now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.

If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.

#LI-DNI

Apply through LinkedIn

Talk to Miffy Maddison, the specialist consultant managing this position

Located in Swindon, 3rd Floor, 3 Newbridge SquareTelephone 01793688617

Click here to access our Privacy Policy, which provides detailed information on how we use and protect your personal information, and your rights in relation to this.

RELATED COURSE

Build your career with the skills employers need.

Certified Ethical Hacker, Part 1 of 8: Intro to Ethical Hacking
151 minutes |
Course description
Hacking has gone from an obscure term to something that appears in the daily news. In this course we'll get started with what is hacking and understand some of the differences between "white hat" hackers and "black" or "grey" hat hackers. It will cover at a high level what are some of the essential tools a hacker needs to know about and be proficient with as well as the credentials of a hacker and what you can expect when becoming a Certified Ethical Hacker (CEH), an certification by the EC-Council.
Each LearnNowOnline training course is made up of Modules (typically an hour in length). Within each module there are Topics (typically 15-30 minutes each) and Subtopics (typically 2-5 minutes each). There is a Post Exam for each Module that must be passed with a score of 70% or higher to successfully and fully complete the course.

Prerequisites
To get the most out of this course, this course assumes that you have a good working knowledge of Linux and Windows based networking environments. It also assumes that you have experience with managing a network, have worked with networking hardware such as switches & routers, are familiar with MS Active Directory (AD) Domain based authentication, know how to work with command-line utilities, and understand the basics of Web Server environments. Many of the demonstrations in this course use the Windows 7 and Kali Linux operating systems which can be downloaded free from the respective sites. All of the demonstrations are created in a virtual environment using Oracle VirtualBox and VMware vSphere 6.

Meet the expert
Rafiq Wayani
Rafiq Wayani has extensive experience including more than 20 years in IT as Systems Architect, Software Engineer, DBA, and Project Manager. Wayani has instructed in a variety of technical areas, has designed and implemented network and information systems, and is certified across a wide range of platforms and systems including Microsoft Solutions Developer, Systems Engineer, Application Developer, Database Administrator, Trainer; Novell Netware Administrator and Engineer; Master Certified Netware Engineer; and A Certified.

Video Runtime
111 Minutes
Time to complete
151 Minutes

Course Outline
Intro to Ethical Hacking
Introduction (20:27)
- Introduction (00:16)
- Certified Ethical Hacking (00:56)
- Introduction (18:59)
- Summary (00:14)
Hacker Credentials (21:40)
- Introduction (00:18)
- Credentials (09:15)
- Demo: Wizard vs. Cmd Line (06:33)
- Demo: PowerShell (05:17)
- Summary (00:15)
Hacker Credentials Part 2 (07:14)
- Introduction (00:23)
- Credentials (00:21)
- OSI Model (03:52)
- Credentials Cont. (00:28)
- Demo: Linux (01:56)
- Summary (00:10)
Being a Hacker (06:01)
- Introduction (00:22)
- What Is It Like? (01:03)
- Demo: Understand the System (03:05)
- What Is It Like? Cont. (01:19)
- Summary (00:10)
Footprinting and Reconnaisance
Terminology (14:58)
- Introduction (00:21)
- Terminology (07:24)
- Terminology Cont. (06:57)
- Summary (00:14)
Tools (11:01)
- Introduction (00:27)
- Tools (02:53)
- Demo: Basic Windows Script (02:30)
- Demo: Basic Linux Script (02:38)
- Demo: Differences (02:15)
- Summary (00:15)
Footprinting (17:42)
- Introduction (00:17)
- Footprinting & Reconnaissance (05:36)
- Active & Passive Footprinting (04:55)
- Footprinting Sources (01:14)
- Demo: Google Hacking (01:38)
- Demo: Other Online Tools (02:34)
- Footprinting Sources Cont. (01:15)
- Summary (00:10)
Footprint Tools and CM (12:43)
- Introduction (00:15)
- Types of Information Gathered (06:36)
- Methods Available (02:13)
- Mitigate Footprinting (03:26)
- Summary (00:11)
Introduction to security in Microsoft 365
39 minutes | Beginner
Learn about the different Microsoft solutions for managing security in your organization. Microsoft 365 provides a holistic approach to security, helping you to protect identities, data, applications, and devices across on-premises, cloud, and mobile.

Cybersecurity risk consultant (Supply chain)

Apply for this job

RELATED COURSE

Build your career with the skills employers need.

Certified Ethical Hacker, Part 1 of 8: Intro to Ethical Hacking

Introduction to security in Microsoft 365