Job Description
Secure by Design Consultant - Outside IR35
* Location: London
* Type: 1 day a week on-site
* Clearance: Active SC Cleared
* IR35: Outside
* Rate: £500 - £550
* Contingency: Must be able to start within 1-2 weeks
Sanderson G&D are seeking a Secure by Design Consultant. The role revolves around providing expert Secure by Design leadership across digital services, ensuring security is embedded from the earliest stages of discovery through delivery and into live operation. The role focuses on identifying risk early, shaping secure solutions, and enabling teams to make proportionate, well-evidenced security decisions.
Responsibilities:
1. Lead Secure by Design discovery and assessment activities across digital services
2. Identify security risks, constraints, and dependencies, and translate these into clear, prioritised recommendations.
3. Facilitate threat modelling and risk workshops with multidisciplinary teams.
4. Define pragmatic security control expectations aligned to service risk and context.
5. Produce concise written outputs that support decision-making and assurance.
6. Coach delivery teams to embed secure ways of working without impeding delivery pace.
7. Support governance and assurance activities by articulating risk, mitigation, and residual exposure...