Information security consultant

We work with human rights defenders and nonprofit clients to identify their information assets that represent the greatest value to their work and the greatest potential harm to them and their partners. We seek to identify where that information is and where it should be. Once as many unnecessary instances of that information as possible have been securely deleted or archived, we work to design appropriate measures to protect that information in light of the realistic capabilities of the adversary and within the limited resources that are available.

If this approach sounds familiar or appealing, please read on!

Role description

The work is fascinating and varied. Those we support are high risk and high profile, and threatened by highly-capable threat actors, including state security forces, corrupt corporations, and organised crime gangs. As a digital and information security consultant at Open Briefing, your primary responsibilities will be to:

1. Provide digital and information security mentoring and remote accompaniment to human rights defenders and other activists and advocates at risk around the world.
2. Provide digital and information security consultancy and training to high-profile nonprofit and foundation clients working for rights, justice, and peace.

Person specification

Essential

• You will have at least three years professional experience in information security roles.
• You will have experience working with charities or activists.
• You will understand why and how threat actors actually seek to compromise, damage or destroy valuable or sensitive information assets.
• You will be comfortable working across the range of technologies, policies, and practices required to keep information assets safe.
• You will have a deep understanding of threat and risk and be comfortable with complexity and prioritisation.
• You will have an understanding of data protection regimes, such as GDPR, HIPAA, and COPA.
• You will be highly organised and have excellent project management skills.
• You will be sensitive to the rights-based agendas and diverse profiles of our clients.
• You will have excellent written and spoken English.

Desirable

• You may have excellent knowledge of information security frameworks.
• You may have a strong understanding of the physical security and psychosocial aspects of holistic security and how they interact with information security.
• You may have excellent written and spoken Portuguese, French, or Arabic.

Terms and remuneration

This is a remote, working-from-home consultancy role. We welcome applications from established consultants with a range of backgrounds, experiences, and profiles, and from anywhere in the world. The hours can vary from month to month, depending on demand and your availability; however, we are seeking applications from consultants wanting to be part of our team and to build long-term and valued working relationships with us and our clients. As such, this role will not suit those between jobs or searching for full-time employment.

You will receive £52.50 an hour (equivalent to £420 a day), a package of mental health and psychosocial support, and access to motivated colleagues working on the frontlines of information security.