IT Cyber Security Technical Assurance Lead

·
Full time
Job offered by: BDO UK
Category:
Location: London

Ideas | People | Trust

We’re BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today’s changing world.

We work with the companies that are Britain’s economic engine – ambitious, entrepreneurially-spirited and high‑growth businesses that fuel the economy - and directly advise the owners and management teams that lead them.

We’ll broaden your horizons

To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you’ll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we’ll give you the training and support you need to achieve whatever you put your mind to. 

We’ll help you succeed

Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships.

You’ll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO’s partners to help businesses effectively. You’ll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with.

The Cyber Security Technical Assurance Lead is responsible for leading on technical assurance to mature BDO’s cyber security posture. This includes conducting and analysing output from continuous security assessments and security platforms. Correlating security assessment and platform data with relevant threat intel producing risk-based prioritisation actions.


The Cyber Security Technical Assurance Lead will have a deep understanding of Breach and Attack Simulation methodology, Vulnerability Management and Cloud Security Posture Management platforms. They will utilise these platforms to continuously assess BDO’s overall cyber security posture, providing data-driven insights to help drive the overall Cyber Security strategy and compliance obligations. In this role you’ll:

  • Lead on IT technical cyber security assurance activities
  • Conduct security assessments using (Cloud Security Posture Management), CSPM and Vulnerability management platforms
  • Work closely with CISO and Governance team, providing technical guidance and ensuring technical vulnerabilities are understood and managed against defined standards and policies
  • Be a subject matter expert for technical (and technology) vulnerabilities
  • Work alongside the Product Security Lead and Cyber Security Architect on security assessment\projects – providing technical guidance where needed and using data to correlate with CPSM\VM platforms identifying risk and engaging the appropriate team to mitigate
  • Create high quality supporting documentation for operational teams where required
  • Stay up-to-date on the latest cyber security threats and trends
  • Identify, review and continuously assure BDO security control effectiveness
  • Provide guidance\training to internal IT team on security and assurance assessments, control testing techniques and best practise
  • Provide guidance to senior management on technical cyber security vulnerabilities
  • Provide guidance\training to the IT Security team where required
  • Help develop Cybersecurity controls across BDO including: CASB, SWG, EDR/XDR, E-mail Security, Data Loss Prevention, Cloud-Native and Network-Based security controls
  • Day-to-day management of Cybersecurity incidents, including: Reporting, Knowledge Management, Root Cause Analysis and Proactive Problem Repetition Avoidance. Contribute to a Cybersecurity knowledgebase comprising technical reference libraries, security advisories and alerts, information on security trends and practices, and laws and regulations. ​
  • Engage with relevant 3rd party Technology partners where required
  • Contribute to the development of a Cybersecurity Operations Resource and Capacity planner managed through BDO’s Azure DevOps environment.

You’ll be someone with:

  • Pragmatism, discipline and are data driven.
  • Experience managing complex deliveries of technical projects.
  • DLP, EDR/XDR, CASB, E-mail Security, SWG and ZTNA/SASE (Required)
  • Microsoft security tools (eg Defender suite) (Required)
  • EST CPSA\CRT – Practitioner Security Analyst and Registered Penetration Tester or similar (Desired)
  • CREST CRTIA - Registered Threat Intelligence Analyst or similar (Desired)
  • CCSP – Certified Cloud Security Professional or similar (Desired)
  • Proven experience in Cybersecurity (Required)
  • Threat and Vulnerability Management vendor certifications (Desired)

You’ll be able to be yourself; we’ll recognise and value you for who you are and celebrate and reward your contributions to the business. We’re committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand.

At BDO, we’ll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development.

We’re in it together

Mutual support and respect is one of BDO’s core values and we’re proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we’ll support you at every stage in your career, whatever your personal and professional needs.

Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you’ll always have access to the people and resources you need to do your best work.

We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we’ve invested in state-of-the-art collaboration spaces in our offices. BDO’s people represent a wealth of knowledge and expertise, and we’ll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you’ll never stop learning at BDO.

We’re looking forward to the future

At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy.

Our success is powered by our people, which is why we’re always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions

We’ve got a clear purpose, and we’re confident in our future, because we’re adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.

#TJ-JB1

#LI-JB1

Recent Jobs

Amersham (On site) · Full time

United Kingdom, Slough Job Title: Commissioning and Qualification TechnicianLocation: Slough, UK Today, Lonza is a global leader in life sciences operating across three continents. While we work in science, there’s no magic formula to how we do it. Our greatest scientific solution is talented people working together, devising ideas that help businesses to help people. [...]Read More... from Commissioning Engineer See details

Aberdeen (Remote) · Full time

Atlas Professionals are recruiting for a Corporate & Quality Assurance Advisor based in Cove, Aberdeen. This will be a staff role working 37.5 hours per week, with the option to work from home one day per week. The successful candidate should have previous offshore experience and be able to carry out occasional trips offshore. If [...]Read More... from Corporate & Quality Assurance Advisor See details

Slough (On site) · Full time

Job Types: Full-time, Permanent Want to apply Read all the information about this position below, then hit the apply button. Salary: Hourly Rate Negotiable Dependant on Experience Benefits: Company pension On-site parking Experience: Level 2 Mechanics (Minimum) HGV MECHANICAL: min 2 year (preferred) Job description The Mansfield Group, the leading Rescue & Recovery operator has [...]Read More... from HGV Mechanic See details