Security Assurance Consultant | Defence & Public Sector
We are looking for a Security Assurance Consultant to join our growing team — and we are open to candidates at practitioner, senior, or principal level. Whether you are building your career in security assurance or bringing years of strategic leadership, there is a place for you here.
Working across Defence and Public Sector programmes, you will contribute to risk, compliance, and accreditation activities against recognised frameworks including ISO/IEC 27001, NIST SP 800-53, and the Cyber Assessment Framework. The scope and seniority of your responsibilities will reflect your experience — from supporting delivery, to owning workstreams, to defining strategy at portfolio level.
You will benefit from structured development, genuine career progression, and the opportunity to work alongside talented colleagues on programmes that matter.
What You Will Do
* Security assurance and GRC across complex Defence and Public Sector programmes
* Risk assessments, control reviews, gap analysis, and accreditation documentation
* Stakeholder engagement with programme teams, risk owners, and accrediting authorities
* Application of ISO 27001, NIST 800-53, CAF, and Defence frameworks (JSP440/604)
* Clear reporting, client deliverables, and assurance documentation
* Mentoring and development of colleagues across the team
What We Are Looking For
We hire at three levels — please apply at the one that fits you best:
🔹 Practitioner — £40,000–£50,000
* Experience in security assurance, GRC, or cyber risk
* Exposure to at least one of: ISO/IEC 27001, NIST SP 800-53, or Cyber Assessment Framework
* Understanding of risk assessment methodologies
* Knowledge of IT systems (infrastructure, cloud, SaaS)
* Eligibility for SC clearance (DV strongly preferred)
🔹 Senior Consultant — £50,000–£60,000
* Strong experience in security assurance and accreditation, with proven delivery ownership
* Experience advising stakeholders on risk and compliance decisions
* Deep working knowledge of ISO/IEC 27001, NIST SP 800-53, and Cyber Assessment Framework
* Familiarity with Defence frameworks (JSP440, JSP604)
* Ability to manage multiple workstreams
* Eligibility for SC clearance (DV strongly preferred)
🔹 Principal Consultant — £65,000–£80,000
* Extensive experience in security assurance leadership at programme or portfolio level
* Proven track record owning risk decisions and defining assurance frameworks
* Deep expertise in ISO/IEC 27001, NIST SP 800-53, and Cyber Assessment Framework
* Strong understanding of Defence assurance and accreditation (JSPs)
* Ability to influence at senior leadership level
* Eligibility for SC clearance (DV strongly preferred)
Benefits
* Flexible working
* Private health insurance (including dental & optical)
* Annual bonus scheme
* Learning and training allowance
* Quarterly in-person team days
* Car and Bike2Work schemes
* Mental health & wellbeing support
* Generous pension contributions
* Life cover