Part-time Information Security Compliance Consultant

Role Overview
We're looking for an experienced Information Security Compliance Consultant to join a purpose-driven organisation on a part-time basis. In this role, you'll take the lead in strengthening the organisation's security posture by driving forward incident response, vulnerability management, and compliance initiatives. You'll be a key player in embedding security best practices across the business and ensuring alignment with industry standards.

Responsibilities

• Work 7-hour days, 3 days a week
• Act as a trusted advisor on information security matters, supporting projects, solution development, and change initiatives with expert guidance.
• Perform regular risk evaluations to uncover and address potential security gaps.
• Lead the end-to-end management of security incidents, ensuring swift and effective resolution.
• Design and deliver engaging training sessions to raise awareness and promote a security-first mindset across the organisation.
• Monitor the evolving threat landscape and develop proactive strategies to mitigate risks.
• Coordinate internal and external audits, ensuring readiness and compliance with relevant standards.
• Oversee the performance and strategic direction of the Security Operations Centre (SOC).
• Contribute to the development of a long-term security roadmap that supports the organisation's strategic goals.
• Ensure ongoing compliance with frameworks and certifications such as Cyber Essentials Plus, ISO 27001, and PCI DSS.

What you'll need to succeed

• Willingness to work 7-hour days, 3 days a week
• Professional security certifications (e.g., CISSP, CISM, OSCP) or equivalent experience with a commitment to achieving certification.
• A strong background in implementing and managing security controls across various technologies.
• Experience managing security platforms and maintaining robust security policies.
• Familiarity with SOC operations and vulnerability management practices.
• Knowledge of industry frameworks such as ISO 2700x, ITIL, and COBIT.
• A solid grasp of cloud and network infrastructure, along with current standards like OWASP, NIST, GDPR, NIS, and PCI-DSS.
• An understanding of diverse threat vectors and experience working with government security standards such as Cyber Essentials Plus.

What you'll get in return

• Guaranteed 3-Month contract
• 27.53 p/h via PAYE basic
• Fully remote working - if travel is needed it will be expensed
• Part-time

What you need to do now


If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.

Hays EA is a trading division of Hays Specialist Recruitment Limited and acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)