Summary of role
NCC Group provides Information Assurance consultancy to help businesses protect critical systems and information. We do this by defining security strategies, developing policies, conducting security maturity and risk assessments, architecture reviews and by delivering security awareness & training. We also provide security expertise to businesses to provide an on-demand cyber capability in the short, medium or long term to solve pressing business cyber orientated problems and challenges.
Our core services include:
We have a fantastic new opportunity to join our UK Consulting and Implementation division for a Senior Consultant operating as a Qualified Security Assessor (QSA). The ideal candidate will have prior extensive PCI consulting experience and commercial exposure within the cyber and payments space, gained from delivering a diverse range of cyber and assurance services ideally across a broad client base. In addition to your technical skills, you will have strong client facing skills and be comfortable dealing with senior client stakeholders.
Build and maintain sustainable trusted client relationships through high-quality delivery, ensuring output exceeds client expectations.
Conduct onsite and remote activities to advise, assess, analyse, and report in line with the engagement and client business requirements. This will involve meeting client stakeholders, conduct of documentation reviews, auditing technical solutions and systems as well as presenting information and advice to senior business partners.
Translate the technical and non-technical findings from an assessment or exercise into relevant, actionable remediation road maps for customers.
Responsible for adhering to all internal policy and procedures in relation to security and quality best practice.Engage with Markets and Pre-Sales teams during the sales cycle to assist in quantifying, pricing and assessing the capability required for the project delivery.
Assist with sales proposals, bids and tenders for delivery of Assurance & Compliance services.
You will act as mentor to less experienced consultants and foster knowledge sharing throughout the delivery team.
You hold or have held a PCI Qualified Security Assessor (QSA) qualification and delivered PCI DSS assessments.
You hold or have held other PCI assessor qualifications such as PCI 3DS Assessor, PCI Card Production Security Assessor (CPSA), P2PE Assessor, Qualified PIN Assessor (QPA) or Secure Software Assessor. You are interested in expanding your PCI skills to include assessing against these standards.
You will be working in areas mainly focusing on PCI QSA however other skills include as NIST 800-53, SANS Top 20 CSC, ISO 27001, Risk Assessment (ISO27005) EU GDPR and other frameworks as requested by clients.
Have the ability to deliver projects within time and in budget and to a high level of customer satisfaction – exercising customer care at all times
Demonstrate a strong ability to develop a rapport with customers and to engender long lasting relationships
Have strong business, consultancy and technical skills within the IT Security Industry
Excellent communication and presentation skills
Desired Skills and Qualifications
Demonstrable capability and qualifications across multiple of the following technical areas is advantageous.
We have a high-performance culture which is balanced evenly with world-class well-being initiatives and benefits: