The Security Consultant - Public Sector role at NTT DATA involves providing security leadership and guidance to public sector clients, ensuring compliance with security standards and frameworks. Candidates should have a minimum of 5 years of experience in security consulting, particularly within the public sector. The position requires strong knowledge of security frameworks, risk assessment, and cloud security. A Bachelors degree in Information Technology or Cyber Security is required, along with certifications such as CISSP and CISM. This is a full-time position with hybrid work options available. The team youll be working with: Security Consultant - Public Sector Hybrid Variable London We are currently recruiting a Security Consultant with public sector experience to join our growing client advisory & delivery business. NTT DATA is one of the world’s largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognized Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to do great things. We believe that by bringing everyone together, we can solve problems using innovative technology that can create a world that is sustainable and secure. This is a great opportunity for you to play a pivotal role in helping to shape our client’s transformation journeys. What youll be doing; The Security Consultant will be part of the Public Sector team, and will work across clients in Health, Central Government and Public Safety. Key aspects of the role are: • Ensure solutions are designed, delivered and operated securely. • Contribute to business growth by identifying and shaping opportunities. • Provide security leadership and guidance throughout the project lifecycle (from design to implementation and handover), and managed services (IT support and maintenance). • Embed security by design and ensure solutions meet compliance, regulatory and client-specific security requirements. • Review and assess solution architectures and live systems from a security perspective, to identify and mitigate security risks. • Work with Service Management to ensure that partners and suppliers adhere to agreed standards, policies and verify/evidence appropriate compliance and security KPIs. • Be a trusted advisor to senior clients on security topics. • Conduct risk assessments and assurance reviews to validate that our solutions and services meet the required security standards. • Ensure compliance with UK Government standards and frameworks. • Support the development and maintenance of security policies and guidelines for the Public Sector. • Work with our client partners to provide security expertise for RFI, RFP and tender responses. • Present security propositions and solutions to our clients, in collaboration with our sales teams. • Identify opportunities to expand security services with our clients. • Build relationships with our partners to drive growth. CORE SKILLS AND EXPERIENCE • Minimum of 5 years’ experience working with Public Sector clients, preferably in the Health, Central Government or Public Safety domains. • Minimum of 5 years’ security consulting experience in a multi-tiered IT enterprise environment / Governance, Risk and Compliance role • Minimum of 5 years’ experience in a Governance, Risk and Compliance role • A track record of delivering security solutions for large-scale infrastructure, transformation or integration programmes • Practical knowledge and understanding of industry security frameworks and guidance such as NIST CSF, NIST 800-53, NCSC CAF and other NCSC guidelines • Experience identifying sales opportunities and supporting Public Sector RFP / RFI / tender responses. • Good knowledge of networking (switching, routing, firewalls) • Experience with the design concepts associated with adoption of Cloud platforms (AWS and/or Microsoft Azure) • An understanding of the native security capabilities and good practice within Cloud platforms (AWS and/or Microsoft Azure) • In-depth knowledge of modern security concepts, common attack vectors, malware, security analytics and threat intelligence. • A good understanding of security testing and vulnerability management is important (including pen testing/ITHC, CVSS/CVE) • Experience working with security standards such as ISO 27001, 27002, 27017, 27108 etc DESIRABLE SKILLS AND EXPERIENCE • CISSP, CISM, CCSP, CRISC or equivalent experience • Good knowledge covering several of the following examples (this list is not exhaustive): AD, Cryptography, End User Computing, IAM, PKI, Server hardening, SIEM, SOAR, virtualisation (VMware) • Participate in pre-sales tasks and perform ongoing support of delivery collateral. • Familiarity with MITRE ATT&CK • Familiarity with ITIL CHARACTERISTICS • Strategic mindset, able to balance business priorities and security risks. • Proactive, collaborative and able work across multiple clients and projects. • Commercially aware and a consultative approach to developing new opportunities. • Strong teamwork skills and attention to detail • Excellent written and verbal communication skills • Versatility - able to quickly adapt to new technologies and client environments • Strong interpersonal and customer relationship skills • Ability to work under pressure and to very short timelines • Ability to work independently as needed yet always thinking as part of a team • Experience in dealing with 3rd-party Service Providers • Operational ability in diverse, large-scale environments • Exceptional customer facing skills • Ability to manage conflict and offer suitable resolutions • Self-motivation and able to take responsibility • Is a persuasive communicator using logic to win support and change views SECURITY CLEARANCE • Please note that candidates must hold or be able to gain UK SC level Security Clearance or higher. Therefore we can only accept applications from British passport holders who meet this criteria.