Cyber Security Subject Matter Expert (SME)

Job Title : Cybersecurity SME Work Location : Telford, Shropshire Department : Information Security & Risk Management Reports To : Chief Information Security Officer (CISO) / Head of Information Assurance, security, ensuring compliance with frameworks such as UK GDPR We at Coforge are hiring Cybersecurity SME with the following skillset : Job Summary : We are looking for a Cybersecurity SME in the UK (based out of Telford, Shropshire) with a strong experience of – Data Protection, Application & Cloud Data Security Key Responsibilities : Information Security Governance & Compliance :

• Develop and maintain security policies, standards, and procedures aligned with UK GDPR and other compliance.
• Conduct risk assessments and support DPIAs for systems processing sensitive data (e.g., PII, PHI).
• Ensure security controls are embedded across enterprise platforms including Pega CRM, contact center systems, and cloud data environments . Data Protection & DLP :
• Design and implement DLP strategies across endpoints, cloud storage, and enterprise applications.
• Enforce data classification, encryption, and access control policies for regulated data.
• Collaborate with stakeholders to ensure compliance with data protection regulations and privacy-by-design principles. Cloud Data Security :
• Define and enforce security controls for structured and unstructured data stored in cloud platforms AWS S3.
• Implement encryption, key management, and access governance for cloud data.
• Monitor data flows between cloud services and on-prem systems to prevent unauthorized access or data leakage.
• Integrate cloud-native security tools ( AWS Macie) for data discovery and classification. Security Monitoring & SIEM :
• Integrate with SIEM platforms e.g., Splunk for real-time monitoring and threat detection.
• Integrate logs and telemetry from Pega CRM, telephony / contact center platforms, and cloud data services.
• Define correlation rules and alerts for proactive incident detection and response. Application Security :
• Conduct secure code reviews, threat modelling, and vulnerability assessments.
• Work with development and operations teams to integrate security into the SDLC and CI / CD pipelines.