Enable job alerts via email!
Information Security and Supplier Assurance Consultant
European Bank for Reconstruction and Development
Greater London
On-site
GBP 65,000 - 85,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading international financial institution in Greater London seeks an experienced Information Security Consultant to lead advanced security testing and assessments. The ideal candidate will manage Red and Purple team exercises, translate technical findings into business risks, and provide actionable remediation steps. This role is key in enhancing the organization’s cyber resilience while embracing a diverse and inclusive work environment.
Benefits
Qualifications
- Strong understanding of adversarial tactics (MITRE ATT&CK framework) and threat emulation.
- Experience managing ethical hacking campaigns and security testing.
- Ability to translate technical concepts into business language.
Responsibilities
- Lead Red Team and Purple Team exercises including planning and execution.
- Coordinate with teams for scheduling and resource allocation.
- Prepare and present comprehensive reports detailing vulnerabilities.
Skills
Education
Tools
We are seeking a highly skilled Information Security Consultant to lead the scoping, planning, and execution of advanced security testing initiatives, includingRed TeamandPurple Teamengagements.We are looking for a specialistexperienced inmanaginganddeliveringethicalhacking campaigns, Red/ Purple teamassessmentsand technical risk assessments.This rolevalidatesdefensive capabilities,synthesisescomplex findings toprovideactionable guidancefor improvement ofcyberposture andresilience.
This role bridges technical security and security risk management and requires knowledge risk assessment methodologies, an ability to produce metrics, reporting and dashboards as well translate and present technical language, concepts and impacts into language that facilitates tavalla business decision making.
- Define objectives, scope, and success criteria for Red Team and Purple Team exercises.
- Develop detailed test plans aligned with organizational risk priorities and compliance requirements.
- Coordinate scheduling and resource allocation for internal and external stakeholders.
- Act as the primary liaison between internal teams and external MSSPs/consultants.
- Ensure testing activities adhere to agreed timelines, methodologies, and ethical guidelines.
- Monitor progress and provide status updates to senior leadership.
- Review and validate attack scenarios, tactics, techniques, and procedures (TTPs) used during engagements.
- Ensure Purple Team exercises effectively integrate offensive and defensive teams for collaborative improvementto enhance detection and response.
- Analysefindings fromRed and Purple Teamengagements.
- Prepare comprehensive reports detailing vulnerabilities, attack paths, and defensive gaps.
- Prepare and present results to technical and non-technical stakeholders, including reporting for EBRD senior leadership. Incorporate technical findings and outcomes into information security risk reporting templates.
- Provide actionable remediation steps and strategic recommendations based on findings.
- Collaborate with IT security, security engineering, architecture and operations teams to guide implementation improvements.
- Track remediation progress and validate effectiveness through follow‑up testing.
- Strong understanding of adversarial tactics (MITRE ATT&CK framework) and threat emulation.
- Experience with penetration testing, exploit development,InfoDetection engineering.
- Familiarity with SIEM, EDR, and threat‑hunting tools.
- Commitment to staying up to date with emerging threats and remedies.
- OSCP, OSCE, CRTO, or similar offensive security certifications.
- GIAC certifications (e.g., GCTI, GPEN, GCFA) or equivalent.
- Extensive background in cybersecurity, covering all major security domains, withге solid hands‑on experience in Red and Purple Team operations.
- Hands‑on experience in scoping and managing security testing engagements.
- Solid experienc e in metrics but reporting.
- Strategic thinker with strong analytical skills.
- Ability to translate technical findings into business risk language.
- Ability to partner with a wide range of technical and non-technical stakeholders
Our agile and innovative approach is what makes life at the EBRD a unique experience! You will be part of a pioneering and diverse international organisation, and use your talents to make a real difference to people's lives and help shape the future of the regions we invest in.
- Varied, stimulating and engaging work that gives you an opportunity to interact with a wide range of experts in the financial, political, public and private sectors across the regions we invest in;
- A working culture that embraces inclusion and celebrates diversity;
- An environment that places sustainability, equality and digital transformation at the heart of what we do.
Diversity is one of the Bank’s core values which are at the heart of everything it does. A diverse workforce with the right knowledge and skills enables connection with our clients, brings pioneering ideas, energy and innovation. The EBRD staff is characterised by its rich diversity of nationalities, cultures and opinions and we aim to sustain and build on this strength. As such, the EBRD seeks to ensure that everyone is treated with respect.Constraint$ and given equal opportunities and works in an inclusive environment. The EBRD encourages all qualified candidates who are nationals of the EBRD member countries to apply regardless of their racial, ethnic, religious and cultural background, gender, sexual orientation or disabilities. Asinnen an inclusive employer, we promote flexible working and expecting our employees to attend the office 50% of their working time.
Please note, that due to the high volume of applications received, we regret to inform you that we are unable to provide detailed feedback to candidates who have notNaam been shortlisted (for further consideration).
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
