Cyber Essentials Auditor - Bridgend

The Role

As a Cyber Essentials Auditor at Flotek, you will play a pivotal role within our dedicated IT Engineering team. You will be responsible for the delivery and ongoing improvement of robust security solutions, ensuring that every project and operational process meets the Flotek standard for cyber resilience.

Your responsibilities will include maintaining and exceeding established security benchmarks for Cyber Essentials and Cyber Essentials+ audits and certifications, actively identifying opportunities for process improvement and risk reduction, and working in close partnership with the IT Delivery Manager and IT teams.

Responsibilities

• Reporting to the IT Delivery Manager.
• Stay updated on industry trends, threat intelligence and Flotek security technologies.
• Responsible for giving world-class service at all times.
• Responsible for communicating with clients and internal project managers.
• Responsible for delivering CE and CE+ audits, remediations and certification.
• Lead and support the implementation of security controls, monitoring, and incident response processes.
• Conduct and facilitate vulnerability assessments, penetration testing, and risk analysis to identify and remediate threats.
• Maintain and improve security documentation, including policies, procedures, and incident reports.
• Manage security patching policies and updates as part of a wider team.
• Provide technical guidance and training to end users and internal teams on security best practices.
• Support the installation and configuration of security software and hardware, including firewalls, endpoint protection, and SIEM tools.
• Ensure compliance with relevant standards and frameworks such as ISO 27001 and Cyber Essentials.
• Mentor and support the growth of aspiring cyber security professionals within the team.
• Work with 3rd party security providers to ensure partner technology systems are well protected from threats and vulnerabilities.

What We Are Looking For

• A positive attitude with a can-do approach to everything.
• Excellent communication skills and the ability to explain technical concepts to non-technical audiences.
• Previous experience in a cyber security or IT security role within a technology-driven business.
• Experience auditing partner IT estates for Cyber Essentials and Cyber Essentials+.
• Experience using RMM tools.
• Experience administering Microsoft Update and 3rd party patching policies.
• Strong technical ability to diagnose and resolve security incidents efficiently.
• Experience using security monitoring and incident management tools.
• Partner-focused mindset to understand and address user and client security needs.
• Experience staying educated on IASME certification requirements and changes.
• Willingness to travel to partner sites across the UK as needed.
• Full UK driving licence.
• Current security accreditations such as CompTIA Security+ or CySA+ are desirable.

Benefits

• EMI Share Equity Scheme — own a slice of the Purple Pie.
• Day off for your birthday.
• Day off for life milestones such as weddings, moving house, child's first day at school, or religious holidays.
• Give back day to support your chosen charity.
• Savings on gym memberships, shopping and other discounts through Perkbox.
• Social events and team building opportunities.
• Opportunities for professional development and career progression.

Due to the nature of the role, the company is unable to offer sponsorship or relocation assistance. Candidates must already reside in the UK.