An established and growing independent Cyber Security Consultancy is hiring a Cyber Security Consultant to lead client delivery and act as the internal SME across GRC and ISO 27001. This is a key role within a collaborative consultancy team, combining hands‑on delivery with leadership responsibilities.
What you’ll be doing
* Lead delivery of GRC, ISO 27001 and data protection consultancy work
* Oversee and support a small team of cyber professionals across multiple projects
* Manage ISO 27001 implementations, including internal audit support and readiness for certification
* Deliver cyber assurance and compliance assessments and guide clients through certification processes
* Run risk, gap and maturity assessments aligned to recognised frameworks (e.g. NIST / NCSC)
* Provide senior advisory support (e.g. virtual security leadership / governance support)
* Contribute to service improvement, proposal input, and client relationship development
What we’re looking for
* Strong experience delivering ISO 27001 in a consultancy or client-facing environment
* Proven ability leading teams or mentoring consultants/analysts
* Solid knowledge of security governance, risk management and controls frameworks
* Understanding of UK security standards and assurance schemes (e.g. Cyber Essentials / similar)
* Excellent communication and stakeholder management skills
Desirable
* ISO Lead Auditor/Implementer, DPO qualification, recognised cyber certifications.
* Hybrid working with flexible arrangements
* 25 days holiday + bank holidays
* Private healthcare, pension, funded training + study time
* Long‑term progression in a growing consultancy
#J-18808-Ljbffr