A leading UK-based Managed IT Services provider is looking to appoint a Cyber Security Consultant to join its expanding cyber practice. This is a key hire within a growing, high-performing team, offering the opportunity to take on a true advisory role with clients across a variety of sectors.
This role is particularly suited to a consultant with a strong grounding in GRC (Governance, Risk & Compliance) who thrives in a client-facing environment and enjoys shaping security strategies at both operational and leadership levels.
You will act as a Subject Matter Expert (SME), delivering high-quality advisory services and helping clients make informed, risk-based decisions aligned with leading security frameworks and best practice.
Key Responsibilities
* Deliver end-to-end cyber security advisory services, with a strong focus on GRC
* Conduct risk assessments, gap analyses, and security maturity reviews aligned to recognised frameworks
* Provide clear, actionable recommendations based on ISO27001, NIST, CIS benchmarks, and Cyber Essentials / Cyber Essentials Plus
* Support clients in achieving and maintaining compliance and certification readiness
* Perform vulnerability assessments and identify risks across complex environments
* Support the implementation of security solutions (MDR, penetration testing, DLP, etc.)
* Act as a trusted advisor, influencing client security strategy and governance structures
* Present findings and recommendations to both technical teams and senior/C-level stakeholders
* Manage multiple client engagements, ensuring high-quality and consistent delivery
* Support pre-sales activities, tenders, and client workshops
* Contribute to thought leadership, particularly around GRC trends and best practices
About You
* Strong experience in a cyber security consultancy or advisory role, with a clear GRC focus (essential)
* Proven experience working with ISO27001, NIST, CIS benchmarks, and Cyber Essentials / Cyber Essentials Plus
* Confident acting as a Subject Matter Expert in governance, risk, and compliance
* Experience supporting organisations through compliance, audits, and certification processes
* Ideally trained within a large consultancy or enterprise environment (e.g. Big 4 or similar)
* Relevant certifications such as CISSP, CISM, ISO27001 Lead Implementer/Auditor, or CEH
* Strong ability to translate technical risk into business-focused insights
* Experience engaging and influencing senior leadership and stakeholders
* Broad technical understanding across infrastructure, cloud, and SaaS
* Happy to occasionally travel to client sites.
Why Apply?
This is an opportunity to step into a high-impact, GRC-focused advisory role within a business that is actively investing in its cyber capabilities.
You’ll play a key role in helping clients navigate compliance, strengthen governance, and mature their security posture, all while being part of a collaborative and growing team environment.