Security Consultant

About Claranet

Founded at the beginning of the dot.com bubble in 1996, our CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP) in the UK to being one of the leading business modernisation experts, who deliver solutions across 11+ countries.

At Claranet, we’re experienced in implementing progressive technology solutions which help our customers solve their epic business challenges. We’re committed to understanding their problems, delivering answers quickly, and making a lasting impact to their business.

We are agile, focused and experienced in business modernisation. Our approach helps customers make genuine, significant shifts in their business strategy, to deliver financial savings, boost innovation, and create a resilient business. We continually invest in our people and the latest technologies, so our customers get peace of mind knowing that they have access to the best talent and services.

In the UK we have over 500 staff working in London, Gloucester, Warrington, Bristol, and Leeds, or as homeworkers.

Working For Claranet

Here at Claranet we pride ourselves on going the extra mile for and with our employees (yes, we really mean it). We offer an extensive benefits package that you can tailor to your needs, inclusive of a matching contribution pension scheme, healthcare, insurance, dental, discounted gyms, and app supported benefit access.

But what we think makes us different is ‘Team Claranet,’ our dedicated internal part of the business that supports you with matters close to your heart. We proudly support local charities in each of our office locations, support employees with paid charity leave, organise key charity fundraising event per year and have a dedicated committee responsible for supporting employee’s fundraising efforts.

Claranet are one of the 10 founding members of TC4RE (Technology Community for Racial Equality.) Being a part of a group of leading UK technology organisations, we are dedicated to building a more diverse and inclusive workforce.

Our Vision

Our vision is to become the most trusted technology solutions partner; renowned for being the best and brightest, having lasting impact with our customers and delivering exceptional returns to our stakeholders.

Cyber Practice

Claranet’s Cyber Practice is dynamic and fast-moving, delivering a comprehensive range of professional services and managed services both onsite and remotely. The Cyber Practice consists of highly skilled professionals delivering a myriad of offensive security testing and governance, risk, and compliance (GRC) services in support of Claranet’s vision. Taking a customer first approach, Claranet’s Cyber Practice prides itself in providing world-class services designed to meet the specific and individual needs of all customers, across all industries.

Position Summary

As a Security Consultant, you will be responsible for delivering customer projects across a range of GRC services in line with your current capabilities, and future capabilities after suitable training/mentoring. You will be responsible for providing professional service delivery including but not limited to; consultancy services and audit / assessment services against multiple security compliance frameworks/standards, and delivery of other GRC consultancy services as required to service our customers’ needs. This role will require additional activities as part of your job responsibilities to support the delivery of services which will include, but not limited to; customer scoping calls and scoping activities, quality assurance activities, customer project admin/planning, service development activities, internal collaboration with other Claranet teams to provide and support customer project delivery, shadowing and mentoring where appropriate.

Beyond this, you may work with other stakeholders across the wider business in support of Claranet’s mission building new and exciting services, enhancing, and improving existing service offerings, and delivering additional services within the Cyber Practice function.

Role Mission

Claranet UK’s strategy is to build long-term, trusted relationships with its customers by delivering market-leading, integrated managed services. We are seeking a security consultant to deliver high-quality security services to meet the needs of our customers and to contribute to the continued development of our market-leading portfolio designed to meet the growing and diverse needs of our customers.

Objectives and Key Results

The Security Consultant is part of the Cyber Practice.

The key objectives and results will be to:

• Successful delivery of customer GRC projects across the range of the Cyber Practice GRC services, in line with both employee capabilities and business needs

• Pursue customer satisfaction by delivering projects to a high standard, meeting customer and company expectations

• Proactively support a knowledge sharing culture between GRC team members and the wider Claranet family

• Play a committed role in Claranet’s efforts in service development, efficiencies, and optimisation by sharing ideas for improvements, supporting successful change implementation and contributing to documentation builds and updates

• Support cross-function engagement to facilitate effective communication and collaboration between relevant stakeholders to help Claranet meet its vision

Duties and Responsibilities

All Security Consultants

• Perform consultancy and audit/assessment activities during delivery of customer projects across the range of the Cyber Security GRC services, in line with both employee capabilities and business need

• Interact professionally with customers across a variety of channels, ensuring timely progression of projects and the ongoing development of longstanding trust-based customer relationships

• Provide ongoing support and guidance to customers to help them achieve their goals and ambitions

• Support Claranet’s efforts to build new and update existing service offerings

• Participate in customer calls as required to support both Claranet and customer project activities such as, but not limited to; pre-sales/sales calls, customer support calls, audit/assessment calls, Q&A (question and answer) calls to support audit/assessments, perform remote assessment activities

• As necessary, create and maintain documentation supporting the delivery of Cyber Security GRC services

• Where appropriate, provide mentoring and / or coaching to GRC colleagues of the same level or below

• Keep up with industry trends, emerging threats, and technological advancements to effectively address new challenges and technologies

• Perform QA (Quality Assurance) reviews of reports produced by the Cyber Security function’s GRC Team

• Where necessary, assist with the development and growth of the Cyber Security function’s such as, product / service improvement or creating cutting-edge training material for internal and external delivery

• Fulfil any re-certification requirements and CPE (Continuing Professional. Education) obligations

Teams to collaborate with

• Customer Experience and Managed Services – ensure we are consistently providing the best service to our customers, proactively monitoring their needs, and integrating their feedback into our future portfolio and propositions.

• Technology Practices & Delivery – support efforts to embed GRC services into customer solutions, Claranet services.

• Finance – submission of any work-related expenses.

Position Specifications

Behavioural competencies – organisational and behavioural fit

• Customer facing, able to represent Claranet confidently and professionally

• Willing to travel to deliver onsite work as required

• Ability to identify improvements through inquisitiveness, share ideas constructively and work collaboratively with a variety of colleagues to deploy change

• Self-motivated and able to work both independently as well as part of a dynamic team

• Accountable by delivering on promises and pursuing growth and personal improvement where developmental feedback is received

• Clear and consistent communication skills across a variety of channels, fostering productive and strong working relationships

• Good numeracy and organisational skills, with attention to detail

• Positive, respectful to others, and enthusiastic

Critical competencies – technical fit

• Good understanding of at least one audit framework; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, Microsoft 365 Certification, etc.

• Ability to deliver, without supervision/support, at least one Cyber Practice GRC service

• Aptitude for understanding, interpreting, and applying objective standards to specific responses

• Working under pressure of varying deadlines and priorities, and managing workload accordingly

• Problem-solving, helping others to understand complex ideas

• Providing guidance in customer-facing situations, tailoring advice to each individual recipient

• Good knowledge and understanding of security and networking technologies

• Ability to quickly learn and understand new skills and technologies specific to the Cyber Security industry

• Take own initiative to expand information security knowledge

• Ability to write concise, accurate and timely reports

Desirable competencies

• Exposure to multiple industry audit/compliance frameworks; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, etc.

• Exposure to Amazon AWS, Microsoft Azure or Google GCPs cloud platforms

• Data Privacy Experience, e.g. GDPR, DPA2018

• Full UK driving license (for UK recruitment)