HomeCareersSearch & ApplyIS Security Consultant

IS Security Consultant



Job type:


The Overview

British Gas are looking for an experienced Information Security Operations Consultant to join their team in Staines (TW18), London.

This role is part of a team that deliver British Gas’s SMART Security, Cyber Threat Intelligence, Vulnerability Management, Incident Response, Security Administration, Assurance and Investigations capabilities across not just our utilities business but across the Global Centrica Organisation

The Role

In this role you need to be quickly regarded as one of the resident experts within Information Security and be able to communicate at a high level with regulatory officials, and all staff from executive management to end users.

  • Make complex decisions on embedding and running operational security controls and capabilities that positively impact delivery of business objectives and outcomes
  • Have exposure and knowledge of SMART Security and it application within an operational environment
  • Review information systems configuration to ensure they are operated to the required standard to maintain accurate and secure records
  • Track and manage operational issues from identification through to remediation or issue acceptance
  • Coordinate deliver and remediation activities associated with penetration tests, vulnerability scans, and attend/lead security patching boards within British Gas
  • Contribute to day to day management of the centralised ‘SOC’ dashboard and automate security feeds for monitoring, alerting and reporting from multiple vendors/platforms
  • Conducts the lost and stolen assets reporting process and ensures adequate data is captured and recorded to enable root cause analysis to be undertaken
  • Provide cyber risk and threat identification by proactively and continuously monitoring the internal and external landscape for relevant events, risks and threats
  • Provides advice and assurance relating to operational security to the business as required
  • Play and active and leading role in security incident response

The Person

  • Working and using security tooling and processes in a SOC environment that encompasses SMART Security, Cyber Threat Intelligence, Vulnerability Management, Incident Response, Security Operations Assurance and Investigations function.
  • Knowledge of best practises (eg: ITIL, ISO27001, NIST & OWASP) and its application at both operational and tactical levels
  • Strong technical knowledge in key security areas for example: SMART, SIEM, VM
  • Knowledge of core infrastructure components e.g. DNS, Active Directory, Exchange, Proxy management
  • Ideally have experience of secure code analysis techniques (SAST & DAST & Threatmodelling)
  • Ability to execute or coordinating penetration tests with appropriate PenTest Tools
  • Ethical Hacking and Forensic qualifications and experience are a distinct advantage
  • CISSP or CISM qualifications are highly desirable

The Company

Centrica plc, a FTSE 100 company, has operations in UK, North America and Europe. With 30+ million customer-product relationships, Centrica's vision is to become the leading integrated supplier of energy and related services for its chosen markets and maximise value to shareholders. Centrica's brand names include British Gas, Direct Energy (North America). At Centrica, our purpose is to help people today and secure energy for tomorrow.

PLEASE APPLY ONLINE by hitting the 'Apply' button. Please upload your cover letter and CV as one document.

Applications will ONLY be accepted via the ‘Apply’ button,

To request an update on this role, or if you have any problems uploading your CV please email careers@centrica.com  typing IS Security Consultant R9909947 in the subject title.

Agencies: Centrica operate a preferred supplier arrangement, however if you wish to be considered at the next review session please submit a brief overview of your capability to PSL@centrica.com.

Salary: Competitive with annual bonus, pension, 25 days annual leave and further flexible benefits on offer