Description
Locations: Cheltenham or Manchester (hybrid, primarily remote)
Application deadline: 10 July 2026
We’re launching our Associate Security Consultant Accelerator Programme — a fast-paced, structured pathway into cybersecurity consulting for high-potential individuals who are curious, analytical, and commercially aware.
This is not a purely technical programme. It is designed to develop well-rounded consultants who can engage clients, solve problems, and deliver meaningful outcomes in security, risk, and assurance.
Programme delivery: Primarily remote, with occasional in-person sessions
Interview process:
* Held from August 2026
* Candidates must be available during August–early September
* Includes:
o Structured interview
o Practical task/skills assessment
o Pre-prepared presentation
Start date: Monday 5 October 2026
What this programme is
* A 4-month, intensive training and development programme
* Designed to build core consulting capability alongside foundational security knowledge
* A blend of instructor-led learning, practical exercises, client exposure, and real-world scenarios
* Structured with clear milestones, feedback loops, and assessment points
You’ll build capability across consultancy, audit, and security domains, including:
* Consulting fundamentals
o Engagement lifecycles
o Client communication and stakeholder management
o Consultancy role-play and scenario-based delivery
* Security and assurance foundations
o ISO 27001, exposure to Lead Auditor and Implementer concepts
o ISO 42001 (AI governance) and emerging risk areas
o Supplier assurance and third-party risk
* Applied consulting skills
o Report writing and presenting insights
o Running workshops and client sessions
o Case studies and simulated engagements
* Broader security exposure
o Incident response fundamentals
o Privacy and PETs
o Security engineering basics
o Threat analysis, resilience, and organisational risk
o Cross-functional collaboration across security disciplines
* Professional development
o Practical assignments and guided research tasks
o Exposure to real client environments
o One industry-recognised certification (e.g. ISO 27001 or ISO 42001)
The programme concludes with a final assessment in Manchester, with successful candidates progressing into consulting roles.
Skills, Knowledge & Expertise
We’re deliberately not narrowing this to a specific background. Instead, we’re looking for:
* Strong communication and interpersonal skills
* Natural problem-solving and critical thinking ability
* Interest in security, risk, or consulting
* Ability to learn quickly and operate in structured programmes
* High levels of ownership, curiosity, and resilience
Experience in cybersecurity is helpful but not required.
No degree requirement — we care more about capability and mindset.
Job Benefits
* Fast-track into a consulting career in cybersecurity
* Structured development, not “sink or swim”
* Exposure to real clients, real problems, real delivery
* Clear pathway into a Delivery Consultant role
We review every application received and will get in touch if your skills and experience match what we’re looking for. If you don’t hear back from us within 10 days, please don’t be too disappointed – we may keep your CV on our database for any future vacancies and we would encourage you to keep an eye on our career opportunities as there may be other suitable roles.
If you do not want us to retain your details, you can utilise the Manage Your Data tool provided by Pinpoint or contact us directly at: global.ta@nccgroup.com. All personal data is held in accordance with the NCC Group Privacy Notice.
We are committed to diversity and flexibility in the workplace. If you require any reasonable adjustments to support you during the application process, please tell us at any stage.
Please note that this role involves mandatory pre-employment background checks due to the nature of the work NCC Group does. To apply, you must be willing and able to undergo the vetting process.
We assess, develop and manage cyber threats across our increasingly connected society. We advise global technology, manufacturers, financial institutions, critical national infrastructure providers, retailers and governments on the best way to keep businesses, software and personal data safe.
With our knowledge, experience and global footprint, we are best placed to help businesses identify, assess, mitigate & respond to the risks they face.
We are passionate about making the Internet safer and revolutionising the way in which organisations think about cyber security.
Headquartered in Manchester, UK, with over 35 offices across the world, NCC Group employs more than 2,000 people and is a trusted advisor to 15,000 clients worldwide.