Cyber Security Services Lead

Job Summary

We are looking for an experienced security professional to lead the InfoSec Services team at Ash Nelson Partners. This team is a dedicated information security and Services practice focused on continuous security assessment. This team will deliver penetration testing, red team engagements, vulnerability management, and security advisory services to clients who need to understand and improve their security posture on an ongoing basis.

The Team Lead, InfoSec Services will establish and run this function.

You will conduct penetration tests and vulnerability assessments directly for clients, while also developing the standards and processes that the team will operate by. The role requires someone who is technically strong, writes clear and honest findings reports, and can communicate risk effectively to both technical teams and senior client stakeholders.

Impact Statement

THis is a hands on Offensive and Defenisve security role. The clients who engage this team will make real security decisions based on what we find and report. As Team Lead, you are responsible for the quality of that work, and for building a team that consistently delivers assessments that are thorough, accurate, and useful.

Key Responsibilities

Penetration Testing and Security Assessment

•       Plan and execute penetration tests across network, application, cloud, and infrastructure environments for enterprise and FSI clients.

•       Lead red team engagements, designing and executing realistic attack scenarios based on current attacker behaviour.

•       Conduct web application, API, and mobile security testing.

•       Perform internal and external network assessments, including Active Directory testing, privilege escalation, and lateral movement.

•       Conduct cloud security assessments across AWS, Azure, and GCP, covering access control weaknesses, exposed services, and insecure configurations.

•       Produce clear findings reports that give technical teams the detail they need to remediate, and executive stakeholders a clear picture of the risk.

Vulnerability Assessment and Ongoing Client Services

•       Design and deliver vulnerability assessment programmes for clients, including scheduled assessments, manual validation, and clear remediation guidance.

•       Develop ongoing assessment service models that give clients a regular and current view of their security position, not just a one-off report.

•       Validate scan findings manually to confirm exploitability and remove false positives before reporting to clients.

•       Track remediation progress across client engagements, retesting to confirm issues have been resolved.

•       Produce regular reports that give clients an honest picture of how their security position is changing over time.

Client Advisory and Engagement

•       Act as the primary technical contact for clients throughout each engagement, keeping communication clear and expectations well managed.

•       Present findings to both technical teams and senior client stakeholders, translating vulnerability detail into clear, actionable business risk.

•       Provide prioritised remediation guidance that clients can act on directly.

•       Support presales by scoping assessment work, contributing to proposals, and presenting the team's capabilities to prospective clients.

•       Build long-term client relationships that develop into ongoing assessment programmes.

Security Reviews and Reporting

•       Conduct security reviews across internal and client environments, covering controls, processes, and technology.

•       Assess client security controls against relevant frameworks including ISO 27001, NIST CSF, and CIS Controls, with awareness of FSI regulatory requirements.

•       Produce structured reports that distinguish between issues requiring immediate attention and longer-term gaps.

•       Develop and maintain report templates and findings libraries that keep the quality of deliverables consistent across the team.

Team Building and Practice Development

•       Build and lead the InfoSec Services team, recruiting and developing security professionals as the practice grows.

•       Define the team's service offerings, delivery approach, and quality standards.

•       Develop internal tools and scripts that improve the consistency and efficiency of assessment work.

•       Keep up with developments in attack techniques and defensive security, and bring that knowledge into how the team works.

•       Contribute to internal training and client-facing content on relevant security topics.

Skills and Qualifications

•       Minimum 5 years of hands-on experience in penetration testing or security assessment work, with at least 1 to 2 years in a senior or lead capacity.

•       Proven ability to conduct network, web application, API, cloud, and Active Directory penetration tests independently.

•       Proficiency with standard security testing tools including Metasploit, Burp Suite, Nmap, Nessus, BloodHound, and equivalent.

•       Scripting skills for automation and custom tooling: Python, Bash, or PowerShell.

•       Strong working knowledge of attack techniques covering initial access, privilege escalation, lateral movement, and persistence.

•       Experience conducting cloud security assessments across AWS, Azure, or GCP.

•       Familiarity with security frameworks and standards including OWASP, ISO 27001, NIST CSF, and CIS Controls. Knowledge of CBEST or TIBER-EU is an advantage for FSI client work.

•       Strong written communication: able to produce findings reports that are accurate and useful to both technical and non-technical audiences.

•       Experience presenting security findings to senior client stakeholders.

•       Relevant certifications preferred: OSCP, OSEP, CRTO, CEH, or equivalent. CREST or CHECK accreditation is an advantage for FSI-regulated work.

•       Experience working in or with FSI-regulated environments is preferred.

<