RemoteLeaf Logo
Log in Sign up

Consultant - SOC2, PCI Assessment

3 weeks ago
United Kingdom
Full-time
Junior
Penetration Tester
Cybersecurity
AWS Azure Cybersecurity GCP
Apply Now
Coalfire

Coalfire

Coalfire is a cybersecurity advisor that helps organizations avert threats, reduce risk, and turn security into a competitive advantage, fueling their success.

Internet Software & Services
251-1K
Founded 2001
$9M raised
View All Jobs 19

Description

  • Work with a team of assessors to plan and deliver client assessments against regulatory, industry, and security framework requirements.
  • Draft audit programs that address regulatory objectives and the complexity of each client environment.
  • Lead client interviews and walkthroughs to evaluate whether environments conform to stated requirements.
  • Test security controls, policies, procedures, technical safeguards, and compliance with laws, regulations, and best practices.
  • Review client evidence and documentation remotely or offline, identify follow-up items, and corroborate findings through inquiry procedures.
  • Prepare, review, and contribute to client-ready assessment reports and recommendations.
  • Evaluate the design and operating effectiveness of controls and identify opportunities to improve security posture.
  • Collaborate with project managers, quality management, and delivery team members to meet timelines, deliverables, and quality standards.
  • Manage priorities and tasks to support utilization targets and on-time delivery.
  • Identify upsell and cross-sell opportunities and escalate them to leadership when appropriate.

Requirements

  • 2+ years of experience as an IT Consultant, IT Auditor, Business Analyst, or in a similar role.
  • Bachelor's degree or equivalent combination of education and work experience, preferably in CIS, MIS, or IT.
  • General knowledge of IT audit procedures and cybersecurity best practices.
  • Experience independently researching technical topics and developing logical testing approaches.
  • Experience leading testing sessions for assigned controls.
  • Demonstrated ability to read and interpret security framework criteria.
  • Strong consulting and relationship-building skills, including the ability to advise and challenge constructively.
  • High attention to detail, strong time management, and the ability to multi-task and meet deadlines.
  • Strong written and verbal communication skills, including the ability to explain technical matters to non-technical audiences.
  • Must be located in the United Kingdom; up to 25% travel may be required.
  • Cloud experience with AWS, GCP, or Azure is preferred.
  • Experience in financial services, fintech, insurance, banking, or B2B enterprise environments is preferred.
  • Preferred certifications include CCSK, CCP, Security+, and AQSA.
  • Information security certification required or ability to obtain: CISSP, CISM, or ISO 27001 Lead Implementer.
  • Audit certification required or ability to obtain: CISA, GSNA, CIA, IRCA ISMS Auditor or higher, or ISO 27001 Lead Auditor.

Benefits

  • Salary range of £54,514 to £64,677 per year.
  • Eligibility for annual incentive, commission, and/or recognition programs.
  • Flexible work model with remote work and optional hybrid access to the Manchester office.
  • Paid parental leave.
  • Flexible time off.
  • Certification and training reimbursement.
  • Digital mental health and wellbeing support membership.
  • Comprehensive insurance options.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Censys

Director of Security/GRC

Censys 51-250 IT Services

Censys is hiring a Director of Security & GRC to lead corporate security, risk, and compliance programs for a remote U.S. team supporting internet intelligence operations.

United States Full-time Executive Penetration Tester Security Engineer
$180k-$237k
AWS Azure Cybersecurity GCP SIEM
6 hours, 7 minutes ago
mindsquare

Trainee IT Consultant IT-Security (m/w/d)

mindsquare 251-1K Internet Software & Services

mindsquare sucht einen Trainee für IT-Consulting, der sich im Bereich IT-Security innerhalb der ersten Jahre zum Senior IT Consultant entwickelt.

Germany Full-time Entry Level Penetration Tester
$0k-$61k
Salesforce SAP SAP ABAP
17 hours, 14 minutes ago
GuidePoint Security

Senior Security Architect - AD/Entra (Remote in the US)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a Senior Security Architect for its IAM team to implement and enhance AD/Entra ID solutions in a fully remote role supporting client identity and access management needs.

United States Full-time Senior Penetration Tester
Active Directory OAuth OpenID Connect Oracle PowerShell SAML
1 day, 4 hours ago
Atmosera

Azure Penetration Test Engineer

Atmosera 51-250 IT Services

Atmosera is hiring a remote Azure Penetration Test Engineer to conduct authorized security testing of Microsoft Azure and Microsoft 365 environments and help validate and improve cloud security posture.

United States Latin America Contract Senior Penetration Tester
Azure OAuth Penetration Testing PowerShell SQL
1 day, 4 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers