Principal Advisor providing strategic leadership in health, safety, and security at DOC. Focused on driving long - term maturity, strengthening assurance, and lifting performance across the organisation.
About the role
- Senior Security Consultant in Governance, Risk & Assurance advising clients on information security. Leading engagements and delivering complex security programs while mentoring teams.
Responsibilities
- Lead cyber governance, risk and compliance engagements
- Engage with clients to understand their threat landscape and business context
- Conduct risk and compliance assessments against recognised frameworks (e.g. ISO 27001, NIST, SOC 2)
- Design, review and advise on the implementation and adoption of information security policies, standards, procedures and frameworks
- Lead cyber and third-party risk assessments and evaluate supplier security posture
- Produce clear, concise risk and compliance reports for executive and C-suite stakeholders
- Contribute to thought leadership and continuous improvement
Requirements
- Extensive experience of designing, leading and delivering cyber governance, risk and assurance outcomes
- Strong knowledge of recognised cyber security frameworks and standards, including ISO/IEC 27001, NIS Directives, NIST
- Demonstrable experience aligning security controls to MOD requirements such as DEFSTAN 05-138, JSP 440, JSP 604 and Defence Cyber Resilience policies
- Experienced in applying UK Government security and assurance frameworks, including GovAssure, Cyber Assessment Framework (CAF), Defence Cyber Certification (DCC) and Government Standard (GovS) 007
- Hold relevant academic or professional qualifications, such as an MSc in cyber security or related specialism, CISM, CISSP, PCIRM or ISO/IEC 27001 Lead Implementer or Lead Auditor certification
- Eligible to work in the UK and able to obtain and maintain UK security clearances
- Hold, or are actively working towards, Principal or Chartered Cyber Security Professional (ChCSP) status
Benefits
- A collaborative and supportive environment in which you can grow and develop your career
- The tools and opportunity to do work you can be proud of
- A chance to work alongside some of the best people in the industry, who always seek to share their knowledge and experience
- Hybrid working – we empower you to make smart choices about when and where to work to achieve great results
- Industry leading coaching and mentoring
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cybersecurity Senior Consultant responsible for evaluating cybersecurity and resilience capabilities. Collaborating with clients to enhance security posture and compliance through assessments and advisory engagements.
Security Architect leading security strategy development and implementation for Kyndryl. Conducting performance testing and ensuring compliance with security guidelines and audits.
Junior Consultant working on Cyber Security standards and customer advisory at MKS4U IT - Beratungs GmbH. Engaging in security assessments and developing long - term security strategies.
IT - Security Consultant at Institut für Datenschutz und Datensicherheit guiding IT compliance and security strategies. Engage with clients to enhance IT security practices across Germany.
Business Development Representative creating and managing lead generation pipelines for cybersecurity solutions. Engaging with enterprise clients in Switzerland and Germany in a hybrid work model.
Information Security Officer responsible for developing and implementing security strategies at an IT service provider for the food and beverage industry. Engaging with teams and management on cyber risks and compliance.
Information Security Manager leading CISOaaS or GRC consultants for NVISO in Germany. Enhancing clients’ cybersecurity posture and driving strategic security initiatives.
Técnico de Segurança do Trabalho JR assisting with safety documentation and training for field activities at Arcadis. Focused on sustainable solutions in engineering and consulting.
Compliance Specialist managing documentation and policies for Orro's Information Security Management System. Supporting essential compliance activities across ISO 27001 and IRAP with strong attention to detail.