IT Security Project Managers

Reference: VAC-219
Sector(s): Cyber/Infosec & IT Audit, IT e.g. SDLC
Salary: £ 70,000 to £ 85,000 Per Annum
Salary Details: plus benefits
Town/City: London
Contract Type: Fixed-term

Security Programme Manager

London; 12m FTC (may be extended); hybrid WFH

Two vacancies one focussed more on security and the other more on networking and infrastructure


Ideally some experience in Professional Service firms. Work closely with technical and non-technical stakeholders from the firm’s Technology department (e.g. InfoSec, Network Team., Infrastructure Team, PMO’s also end users impacted by the programme) and external vendors to scope and deliver a series of information security related projects.

These may include, but are not be limited to, projects in the following spaces:

Network security; Network Access Control across the firm’s LAN, and reviewing and/or improving the firm’s approach

Email security; Authentication, Reporting & Conformance, Controls.

Endpoint security: Completing the firm’s deployment of Microsoft Defender e.g. across the mobile devices; and working with Infrastructure & Operations.Deliver improvements in the firm’s Microsoft Secure, e.g. through viability assessment, testing and progressive implementation of further Attack rules.

Cloud infrastructure security: Improving the firm’s use of Microsoft Azure– e.g. by driving improvements against Azure Secure, align to Microsoft hardening baselines, and creating technical standards and operational processes

Identity and Access Management: Includes implementing role-based access control for on site privileged access; standardising and automating Joiners, Movers, Leavers processes; driving the adoption of Single Sign On


Acting as the focal point, and driving force, for each project.

Defining project scope and deliverables, including business/requirements analysisHelping to identify appropriate candidate solutions for the fulfilment of security requirements in conjunction with external vendors and the broader marketplace, in order to steer stakeholders to consensus.

Helping to define and document proposed solutions, in terms of their high-level architecture.Modelling the costs and effort to deliver each project, in order to assist with the production of the relevant business cases and budget submissions.Managing relevant vendors, potentially including conducting market-soundings, facilitating scoping calls, obtaining quotes, managing vendor due diligence and on-boarding, and managing vendor project delivery performance.

Defining, maintaining and tracking performance against detailed project delivery plans in each of the time, cost and quality dimensions.

Capturing, tracking and managing project risks, issues, assumptions, dependencies and conflicts.Project administration, including the production and maintenance of project documentation and the production and delivery of project status reports.

Preparing release-to-production documentation to ensure that the solution delivered can be supported under BAU, including definition of any support / service desk processes required.


Candidates for this position ideally have the following skills:

A strong understanding of Project Development Life Cycle processes and the Prince2, Agile methodologies.A track record of successfully managing IT projects – preferably IT security projects specifically – in a complex enterprise IT environment.A good understanding of information security concepts, risks and solutions.A good understanding of the key challenges associated with delivering security projects in each of the spaces identified above.A good understanding of the ITIL framework – particularly how to prepare an IT organisation to support a project deliverable once it is released into production.Excellent written and verbal communication skills.Excellent attention to detail.The ability to work independently and within a team.The ability to take ownership and drive activity across disparate teams.The ability to handle ambiguity and to multi task in order to meet deadlines, across concurrent projects.

Keywords: #CyberSecurityjob, #ITSecurityjob, #infosecjob, #datasecurityjob,


About Brimstone Consulting: We specialise in finding highly qualified staff in the following areas: 
Forensic Accounting & Fraud - (AML/CTF, Investigation, CFE’s etc.); Legal and LegalTech (E-Discovery, Digital Forensics, EDRM); Big Data and Data Analytics? - (MI/BI/CI);? InfoSec and Cyber Crime; Audit;? Accountancy and Finance; FinTech (Payments etc.);? Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.);? Compliance/Corporate Governance ;? IT? - (full SDLC- BA’s PM’s , Architects, Developers etc.); 

Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients’ specifications. We may store applications in our cloud storage facilities that may include dropbox.