Information Security Consultant – M365

Information Security Consultant required for non-profit organisation. The role will be focused on providing technical security project reviews & assurance in relation to the secure configuration of managed services and cloud-based IT services, particularly Azure and Microsoft 365.

Key Responsibilities:

• Provide security and risk assessment consultancy on projects and other formal workgroups and committees, making appropriate recommendations for security design and risk mitigation to ensure that IT and information security is considered in the design of new services or changes to existing services.
• Provide in-depth security expertise in the areas of cloud security on Azure and Microsoft 365, including both security and compliance controls and general input to the security architecture across the cloud estate.
• Perform security risk assessments, followed by initiating and managing appropriate remedial action, to ensure that IT infrastructure and application systems are adequately protected.
• Ensure information security management is kept informed of project developments and ongoing security activities, including escalating any issues requiring attention.
• Ensure that Change Management processes include a security review and in particular sign off all Firewall rule set and networking changes to ensure the integrity of the firm’s network security is maintained.

As an ideal candidate, you will have an industry certification such as CISSP/CISM/CRISC and have expert knowledge of Cloud Security Risk, M365 & Azure Infrastructure.  You will also have a proven track record of successful delivery in a similar role.