Job Description

Flexible working - We are guided by our client work and needs; however, you have autonomy to manage your time and diary to suit your work/life balance.

PA’s Financial Services Cyber Security team helps our clients navigate a complex environment of risk and regulatory expectation. We bring together strong awareness of all aspects of cyber security, from cutting edge technology to fundamental aspects of people and process change. We help our clients set strategy, assess their maturity, reduce risk and support the business.

For our Financial Services clients, we see Cyber Security as a critical business enabler. Alongside compliance and the ability to protect critical information and assets, it can create opportunities for greater market focus and drive growth. This progressive and open-minded approach to Cyber Security is key to what we do.

Cyber Security Consultants at PA engage in a range of different activities. These include:

• Business development– active support for the business development process to include management of network, the preparation of proposals, coordination of events and delivery of presentations.
• Client facing consulting engagementscovering a range of different areas. For example:
  • Cyber maturity assessment– assessing clients using a combination of open source and our own frameworks and advising on improvements.
  • Risk reporting –supporting clients communicate levels of exposure, including through the use of tooling and automation.
  • Strategy development– Setting out structured approaches for delivering cyber improvement, aligned to cyber maturity and also broader business need.
  • Project and programme delivery– Delivery of projects and programmes, to include overarching project and programme management as well as supporting disciplines such as culture change, business analysis and policy development.
  • Procurement– Support to procure tooling and managed services, including advice on the operation of competitive procurement exercises.
  • People and culture change– understanding of the drivers of people and culture change, including their relationship with Insider Risk.
  • Advising on regulatory expectations– supporting clients meet the regulatory expectations of Financial Services regulators, in particular the translation of principles-based regulation into practical improvement steps.
• Internal research and development of thought leadership– researching into areas that are relevant to our clients and being able to provide advice and insight, either to other PA teams or in client facing situations.

Our Financial Services Cyber Security team is growing. We are looking for consultants who can contribute to that, by sharing their expertise, developing their peers and creating genuinely differentiated thinking.

Qualifications

We recognise that excellence in Cyber Security can often come from a range of different academic and career experiences. What matters is that you are able to understand the blend of different contributors to cyber security risk and are able to drive improvement to reduce it.

We are looking for candidates who are passionate about Cyber Security and are committed helping organisations understand and ultimately reduce their cyber risk. That includes:

• A good level of awareness across core defensive security control categories (including endpoint monitoring, anti-malware, SIEM / behavioural analytics, firewalls and data loss prevention)
• Understanding of the relationship between on-prem and Cloud security, to cover the different controls used to protect data in both
• The ability to discuss trends in the sector (for example, Artificial Intelligence, Zero Trust or DevSecOps) and map these to the needs of clients
• Familiarity with frameworks such as the NIST Cyber Security Framework (CSF) and ISO 27001
• Familiarity with Cyber Security expectations from organisations such as the Bank of England, FCA and European Banking Authority. This includes the relationship between Cyber and Operational Resilience.
• Experience in industry Cyber Security roles, or in professional services organisations where you have focused on Cyber Security. We are particularly interested in candidates with demonstrable experience working in Financial Services.
• Essential qualifications
  • Bachelors or Masters degree in Information Security, Technology or a related discipline
• Desirable qualifications / certifications
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified in Risk and Information Systems Control (CRISC)
  • ISO 27001 Auditor/Practitioner

We know the skill-gap and ‘somewhat need to tick every box’ can get in the way of meeting brilliant candidates, so please don’t hesitate to apply – we’d love to hear from you.

Apply today by completing our online application

Additional Information

Life At PA encompasses our peoples' experience at PA. It's about how we enrich peoples’ working lives by giving them access to unique people and growth opportunities and purpose led meaningful work.

We believe diversity fuels ingenuity. Diversity of thought brings exciting perspectives; diversity of experience brings a wealth of knowledge, and diversity of skills brings the tools we need. When we bring people together with diverse backgrounds, identities, and minds, embracing that difference through an inclusive culture where our people thrive; we unleash the power of diversity – bringing ingenuity to life.

Find out more about Life at PAhere.

We are dedicated to supporting the physical, emotional, social and financial well-being of our people. Check out some of our extensive benefits:

• Health and lifestyle perks accompanying private healthcare for you and your family
• 25 days annual leave (plus a bonus half day on Christmas Eve) with the opportunity to buy 5 additional days
• Generous company pension scheme
• Opportunity to get involved with community and charity-based initiatives
• Annual performance-based bonus
• PA share ownership
• Tax efficient benefits (cycle to work, give as you earn)

We recruit, retain, reward and develop our people based solely on their abilities and contributions and without reference to their age, background, disability, genetic information, parental or family status, religion or belief, race, ethnicity, nationality, sex, sexual orientation, gender identity (or expression), political belief veteran status, or other by any other range of human difference brought about by identity and experience. We are on a journey towards ensuring our workforce is diverse at all levels and that our firm is representative of the world around us. We welcome applications from underrepresented groups.

Adjustments or accommodations- Should you need any adjustments or accommodations to the recruitment process, at either application or interview, please contact us.

#Li-IC2

#Hybrid