Summary: The Information Security Consultant role focuses on the development, implementation, and continuous improvement of security policies and standards within a leading financial services firm. The position requires expertise in security governance, regulatory frameworks, and risk management to ensure compliance and enhance the organization's information security posture. The consultant will lead initiatives to align security practices with industry standards and collaborate with various internal teams to foster a strong security culture. A background in financial services and relevant industry certifications is highly advantageous.

Key Responsibilities:

• Lead the development, implementation, and maintenance of information security policies, standards, and guidelines.
• Ensure security policies are comprehensive, consistent, and aligned with organizational objectives and regulatory mandates.
• Establish processes for periodic review, update, and approval of security policies.
• Advise on compliance with relevant security frameworks and regulatory requirements.
• Provide subject matter expertise to identify, assess, and mitigate information security risks.
• Coordinate with audit and risk management teams to ensure adherence to security policies.
• Design and implement governance structures for monitoring and enforcing security policies.
• Develop and maintain a security metrics framework to evaluate policy effectiveness.
• Serve as a key stakeholder in risk assessments, vulnerability management, and incident response planning.
• Collaborate with internal teams to ensure successful adoption of security policies.
• Lead security policy training and awareness programs across the organization.
• Act as a trusted advisor to senior management on security governance and risk management strategies.
• Stay current on emerging threats and regulatory changes to adapt policies accordingly.
• Continuously improve the organization’s information security posture through policy enhancements.
• Publish thought leadership content and represent the organization at industry events.

Key Skills:

• Industry certifications such as CISSP, CISM, or CRISC.
• Proven track record in information security roles.
• Deep understanding of security governance and regulatory frameworks.
• Experience in risk management and compliance within financial services.
• Strong communication and collaboration skills.
• Ability to lead training and awareness programs.
• Expertise in developing and implementing security policies and standards.
• Knowledge of industry best practices and emerging security threats.

Salary (Rate): 1000

City: London

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: Other