Digital Trust & Security - Senior Consultant

Informed and validated by science and data. Superpowered by creativity and design. All underpinned by technology created with purpose.

YOUR ROLE

The Invent Digital Trust & Security (DT&S) practice focuses on ensuring secure business outcomes for our clients, providing Cybersecurity advisory and transformation consulting in areas such as security strategy, risk management, human risk management, data and identity security, secure intelligent industry, Gen-AI risk, and security operations modernisation.

Our security specialists and innovators enable our clients to evaluate cyber risks, redesign Cybersecurity operating models, modernise digital identity capabilities, lead programmes to drive security culture change, and transform security and compliance regimes to make them efficient, effective, sustainable, and resilient.

For this role, we are looking for individuals with experience in Cybersecurity to help embed security culture and practices. We continuously recruit across a range of experienced hire grades for our DT&S practice. Depending on experience, you will be comfortable with exploring ambiguity with a business outcome mindset while applying business analysis and enabling skills including communications and stakeholder engagement as a key delivery contributor, a subject matter expert (SME) in the team and/or manager of a workstream of consultants and client staff.

We are looking to grow our diverse team at the Senior Consultant grade with those who have demonstrated expertise and experience in one (or more) of the following domains:

• Generative AI – Enabling the secure design and adoption of Gen AI for business, IT and/or security functions in alignment with the evolving regulatory landscape (e.g. EU AI Act, GDPR, DPA 2018, etc.).
• Security Architecture – Improving the security posture of the Enterprise and/or applications through the assessment, design or implementation of effective and secure architectural patterns that align with industry standards (e.g. CIS L1/2, NIST, ISO27001, COBIT, etc.).
• Operational Technology – Ensure the security of critical infrastructure aligns with industry standards and regulatory requirements (e.g. NIST SP 800-82, CAF, DPA 2018, etc.).
• Operational Resilience – Shaping and/or transforming client operational resilience capabilities in compliance with leading regulatory standards (e.g., DORA, Bank of England, FCA, NIST, etc.).
• Cybersecurity Operating Model Transformation – Assessing, designing and implementing effective and outcome orientated security operating models.

As an experienced consultant in the business you’ll help set the direction, grow our business, model our values and behaviours, and coach and develop junior members of the team. Key expectations from this role include:

• Engaging in projects for our clients which transform their Cybersecurity, Architecture and Operational Resilience capabilities, and reduce business and technology risk.
• Providing expertise in the strategic, organisational, and human aspects of Cybersecurity. For example, security strategy definition and high-level operating model design, which are often the first steps in engaging our clients, helping to influence the board and CxO with top-down buy-in and understanding.
• Providing insight for threat modelling, risk management and security overlay approaches by conducting security maturity assessments.
• Providing a business understanding of technical domains and tailoring these to help clients maximise value and leverage quick wins on their transformation journey.
• Engaging with clients in business, IT and/or security to positively influence the board and senior stakeholders to the required outcomes.
• Collaborating with teams and stakeholders to deliver security strategy, governance, security testing, identity & access management (IAM), security architecture, privacy, and cyber data analytics.

As part of your role, you will also have the opportunity to contribute to the business and your own personal growth, through activities that form part of the following:

• Business Development – Leading/contributing to proposals, RFPs, bids, proposition development, client pitch contribution, client hosting at events.
• Internal contribution – Campaign development, internal think-tanks, whitepapers, practice development (operations, recruitment, team events & activities), offering development.
• Learning & development – Training to support your career development and the skills demand within the company, certifications etc.

YOUR PROFILE

To be successful in this role you would need to have the below mixture of skills and experience:

• Experience in one or more Cybersecurity domains. (e.g., Security & Risk Management, Security Architecture, Asset Security, Security Engineering, Communications & Network Security, Identity & Access Management, Security Education and Awareness, Security Assessment & Testing, Security Operations, or Software Development Security).
• Desired Cybersecurity experience is as follows: Working with SOC teams, OT Security, Security Architecture, Security Op Model Transformation projects and Cybersecurity Assessments.
• Familiarity with core Cybersecurity frameworks and industry frameworks (e.g., NIST CSF, ISO27001, CIS Critical Controls), regulations (e.g., NIS2) and financial regulations (e.g., DORA, FCA, Bank of England, etc.).
• Have an understanding of the future of Gen AI and the impact on cyber security.
• Relevant Cybersecurity qualifications such as CISSP / CISM / CompTIA Security+ preferred.
• Currently working in an established Consulting firm, and/or in industry but having a Consulting background.
• Proven ability to be successful in a matrixed organisation, and to enlist support and commitment from peers in selling and delivering consulting solutions.
• Experience of proposition building and delivery.
• Cross-sector or SME sector experience in core Capgemini sectors. (e.g., Financial Services; Public Sector; Energy, Utilities & Chemicals; Consumer Products Retail Distribution; Manufacturing, Automotive & Life Sciences; Telco, Media & Technology).
• Bring excellent communication skills and the confidence to influence senior stakeholders to the role.
• Experience in managing and leading delivery in Cybersecurity projects.
• Experience of proposition building and delivery.
• SC cleared (or above), or eligible.

WHAT YOU'LL LOVE ABOUT WORKING HERE?

We are delighted to have received the “Glassdoor Best Places to work UK’ accolade for 4 consecutive years. To see what it’s like to work at Capgemini Invent, visit our Glassdoor page. Capgemini Invent offers Consultants a culture of learning, ownership, and focus on value.

• You’ll gain exposure to high-profile transformations and gain hands-on exposure to leading technologies.
• Our consultants are formally trained by industry experts in consulting and client delivery. Consultants have access to a vast array for different training and certifications in a variety of areas: Cybersecurity (CISSP, CISM), cloud technologies (AWS, Azure, GCP), and Agile delivery (Scrum Master, Product Owner, Scaled Agile Framework). Capgemini Invent offers you the flexibility to develop various areas of knowledge in technical domains aligned both to your interests and our client’s outcomes.
• Les Fontaines: Capgemini Invent has a unique training environment just outside of Paris, where we can immerse ourselves in thought-leadership, share knowledge and build capabilities that will help us and our clients to succeed.
• We hold monthly showcases of our digital transformation initiatives, sharing knowledge and showing off how the power of technology is impacting our clients.
• There are monthly team drinks, and it’s a chance to connect face-to-face with the wider team over a few drinks in the city. The monthly team breakfasts give you a different, more relaxed setting to meet up in the office to hear from the leadership, meet colleagues and discuss the trends and insights within the market. Team away days are always a chance to connect with the team, have fun and learn something new.

NEED TO KNOW

At Capgemini we don’t just believe in Diversity & Inclusion, we actively go out to making it a working reality. Driven by our core values and Active Inclusion Campaign, we build environments where you can bring you whole self to work.

We aim to build an environment where employees can enjoy a positive work-life balance. We embed hybrid working in all that we do and make flexible working arrangements the day-to-day reality for our people. All UK employees are eligible to request flexible working arrangements.

We have also invested in wellbeing apps such as Thrive and Peppy.

CSR

When you join Capgemini, you’ll join a team that does the right thing.

Whilst you will have London, Manchester or Glasgow as an office base location, you must be fully flexible in terms of assignment location, as these roles may involve periods of time away from home at short notice.

We offer a remuneration package which includes flexible benefits options for you to choose to suit your own personal circumstances and a variable element dependent grade and on company and personal performance.

In order to commence a role with Capgemini UK plc you will be required to provide documentary proof prior to joining the Company that you are entitled to live and work in the UK.

More information is at available at: https://www.capgemini.com/gb-en/service/invent/

ABOUT CAPGEMINI

The Group reported 2023 global revenues of €22.5 billion.