It's a
Senior Information Risk Consultant (Cybersecurity Assurance)
role, very Azure-heavy, with a strong focus on security assurance, cloud/on-prem controls, ISO 27001 compliance, and advising project teams.
Here's a quick breakdown of the
key screening angles
before I see your notes:
Must-Have Technical Skills
- Deep
Azure Cloud & Microsoft 365 security controls
expertise.
- Hands-on security configuration experience (Azure Key Vault, Defender, Entra, Purview, Kubernetes, etc.).
- Security assurance/engineering experience in regulated industries.
- Knowledge of latest threats, countermeasures, and security hardening practices.
Education & Experience
- Bachelor's +
12 years
, or Master's +
6 years
in relevant fields (info sec, comp sci, engineering, business, math).
- Prior work in technical security assurance/engineering roles with regulatory requirements.
Certifications
- CISSP or CISM
= mandatory.
- At least 2 of the following preferred: CCSP, Azure Security/Architecture certs, GIAC, Offensive Security.
Soft Skills / Competencies
- Strong communicator (technical → non-technical translation).
- Ability to balance
security vs business needs
.
- Stakeholder influence & relationship management.
- Analytical & problem-solving under pressure.