Cyber Security Consultant

Job Title: InfoSec Generalist Consultant-Loyalty

Location: London / Hybrid

Employment: Contract (3 months)

Rate : £600/Day- Inside IR35

The full job description covers all associated skills, previous experience, and any qualifications that applicants are expected to have.

KEY RESPONSIBILITIES

Security Advisory: Act as the InfoSec partner for the Loyalty Programme, embedding security early across design and delivery.

Risk Management: Perform risk assessments on loyalty platforms and integrations, ensuring risks are logged and tracked to closure.

Technical Oversight: Review API security, secrets management, and data protection controls to safeguard customer information.

Governance & Assurance: Validate third-party and internal compliance against M&S security standards, CIS Controls, and privacy regulations.

Collaboration: Partner with Product, Architecture, and Security Operations to ensure consistent security practices and incident readiness.

SKILLS

Broad knowledge of application and cloud security (preferably Azure).

Strong understanding of API security, identity management, and data protection.

Familiarity with secure software development and DevOps environments.

Experience with security risk assessments, governance, and control validation.

Effective communicator — able to translate technical issues into clear business impact.

Exposure to tools such as Wiz, GHAS, Apigee desirable.

Previous experience with customer data or loyalty systems advantageous.