Job Description

Senior Security Consultant - Governance & Risk

We're seeking an experienced Security Consultant to join a high performing Security Practice, supporting clients across governance, risk management, and information assurance within complex and regulated environments. Due to the secure nature of the projects DV or SC Clearance is needed.

The Role

Lead security governance and risk management activities Deliver information assurance support, including risk assessments, assurance reviews, and security documentation Support clients in defining business led security requirements and secure-by-design solutions Interpret and apply ISO 27001 / ISO 27002, NIST, NCSC CAF, and MOD security frameworks Engage confidently with technical and non-technical stakeholders, including senior leaders Contribute to bid support and presales activity where required

What You'll Bring

Strong experience in security governance, risk, and information assurance Deep understanding of ISO 27000-series standards and security risk frameworks Familiarity with NCSC guidance and legacy IA standards Experience operating within MOD / defence-aligned security frameworks (e.g. JSP 604, JSP 440, JSP 902) Ability to clearly articulate risk and assurance outcomes to diverse stakeholders

Qualifications

Essential:

CISSP, CISM or equivalent recognised cyber security certification

Desirable:

Full CIISec membership Chartered or Principal status via the UK Cyber Security Council (Risk Management) IEng or CEng registration BCS chartership

What's On Offer

Clear progression within a growing security consultancy Flexible working (including part-time or term-time options) Competitive pension and benefits package Private healthcare, EV scheme, and strong company culture Additional paid leave for Reservists and CFAVs
If you're passionate about security governance, assurance, and risk led decision making, and want to work as a true customer-facing security consultant, we'd love to hear from you.