Cyber Security Governance and Risk Management – Consultant

    Location: Remote - must be based in the UK, ideally in the South

    Salary: up to £65k

    Contract Type: Permanent

    Cyber Security Governance and Risk Management

    About the role

    The role focuses on high-quality cyber security consultancy and cyber assurance supporting customers and clients.

    As part of the growth of our existing successful cyber security risk and compliance team, new and exciting roles are available for cyber security specialists.

    You will:

    • Create and support risk assessments and security risk management processes.
    • Develop information security management/governance systems.
    • Communicate information security risks recommending appropriate risk treatment/mitigation to a variety of stakeholders.
    • Provide security-related design advice, guidance and recommendations to project teams and customers (following Secure by Design principles).
    • Apply your knowledge and skills to projects achieving suitable security accreditation or compliance with security policies and standards.
    • Work with the wider company engineering specialists in delivering cyber assurance to all projects.


    Regarding location, we have offices across the UK and are happy to explore flexible and hybrid working arrangements. Please note that some travel to customer sites or to attend meetings will be required. This role is available part-time, job-share or full time. This is because we want the best people for our roles, and we recognise that sometimes those people aren’t available full-time.

    About you

    Please note, this role is reserved for sole UK Nationals only and employees must be prepared to hold UK government security clearance.

    We are looking for experienced cyber security specialists aligned with SFIA Information Assurance: Level 5 who must have experience in:

    • Working for Government departments, in particular Defence.
    • Cyber Security Governance and Risk Management


    It would also be desirable if you have experience in:


    • Cyber Security Audit & Assurance (but not full-time security auditors)
    • Secure by Design principles and implementation.

    Our work is directly customer focused, your ability to present and articulate technically complex work clearly to stakeholders with differing levels of technical knowledge is important.

    Knowledge of national or international standards such as NIST, ISO27000, and DCPP / Cyber Essentials would be advantageous but not essential.

    We value professional qualifications and professional registration with appropriate institutions and can provide support and training for you to achieve them.   Team members typically hold, or are working towards, CISSP, Chartership, or the Senior level CCP qualification in Security & Information Risk Advice.


    Nick Haaker

    Posted by

    Nick Haaker

    Lead Consultant

    If you have any questions give me a call on 07834 393 979

    Apply for This Role...

      Attach a CV (Accepted file types: pdf, doc, docx, rtf.)