Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to secure projects and protect vital data while collaborating with diverse teams.
- Company: Welsh Water provides safe water to 3 million people, committed to environmental protection.
- Benefits: Enjoy hybrid working, 33 days annual leave, competitive salary, and various employee perks.
- Why this job: Make a real impact in cybersecurity while working in a culture of trust and inclusion.
- Qualifications: Professional certifications like CISSP or CISM and experience in security assurance are essential.
- Other info: We value diversity and encourage applications from all backgrounds.
The predicted salary is between 46768 - 55200 £ per year.
Press Tab to Move to Skip to Content Link Select how often (in days) to receive an alert: City: Cardiff Address: Cardiff, Wales, GB, CF30LT Job Requisition Number: 7719 Work Type: Permanent Job Function: IT Salary Range: £56,710 – £69,471 Base: Cardiff / Hybrid Closing Date: 23:59 on 19/06/2025 The Security Consultant works within the Security Risk and Governance team and is responsible for working with project teams, including architects, analysts, technical designers, programme managers, and business users to ensure that projects are delivered securely, protecting customer, company, and employee data, and ensuring compliance with the Information Security policies and standards. Responsibilities: Provide end-to-end engagement on a wide range of business projects, ensuring security is integrated and data is protected. Attend project meetings and represent Information Security, providing guidance as needed. Review and consult on IT/Business change documentation including Business Requirements, Design Documents, and Network Diagrams. Provide the necessary people, process, and technology requirements to deliver secure solutions. Ensure relevant security policies and standards are applied to projects, adopting a hands-on approach where necessary. Communicate risks effectively to both technical and non-technical stakeholders. Scope, organize, and support penetration testing and vulnerability assessments, tracking remediation efforts. Conduct Security impact assessments to meet policies, NIS D obligations, and GDPR requirements on projects where applicable. Contribute to and review security clauses in supplier contracts. Undertake any additional duties as assigned by the line manager. Who you’ll work with Internal: CISO Security Architecture Business Sponsors Head of Procurement Head of Legal DPO IT & OT Architects External: Outsource IT providers Major suppliers to Welsh Water External Auditors Regulators About you Knowledge, Skills & Experience: Recognized professional certifications such as CISSP, CISM, CISA, CRISC Familiarity with NIST Cybersecurity Framework, CIS Critical Security Controls, and ISO27001 Understanding of Security governance frameworks and risk management Experience delivering Security assurance in large, complex projects Strong stakeholder engagement skills Technical knowledge of security implementation and vulnerabilities Experience delivering end-to-end Security assurance Excellent communication skills, both written and verbal Deep knowledge of Security risk management and frameworks Good to know This role includes hybrid working. We offer a competitive salary, 33 days annual leave, and a range of employee benefits including variable pay schemes, additional leave options, pension contributions, mortgage services, discounts, and more. Note: We may close or extend the application period based on interest. All new employees will undergo references, medical clearance, and criminal record checks, with additional security clearances as needed. Who we are Welsh Water supplies safe, reliable water to 3 million people and manages wastewater responsibly, protecting our environment. We value diversity and inclusion, encouraging applications from minority groups, including ethnic minorities, women, LGBTQ+, and individuals with disabilities. We are committed to a culture of trust, respect, and honesty. Company registration: Dŵr Cymru Cyf, No. 2366777, registered in Wales. Registered office: Linea, Fortran Road, St. Mellons, Cardiff CF3 0LT. #J-18808-Ljbffr
Cyber Security Consultant employer: Dwr Cymru Welsh Water
Contact Detail:
Dwr Cymru Welsh Water Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Consultant
✨Tip Number 1
Familiarise yourself with the NIST Cybersecurity Framework and ISO27001 standards. Being able to discuss these frameworks in detail during your interview will demonstrate your knowledge and commitment to security governance.
✨Tip Number 2
Prepare examples of past projects where you successfully integrated security measures. Highlighting your hands-on experience will show that you can effectively apply your skills in real-world scenarios.
✨Tip Number 3
Brush up on your stakeholder engagement skills. Be ready to discuss how you've communicated risks to both technical and non-technical audiences, as this is crucial for the role.
✨Tip Number 4
Stay updated on the latest trends in cybersecurity threats and solutions. Showing that you're proactive about learning will impress interviewers and demonstrate your passion for the field.
We think you need these skills to ace Cyber Security Consultant
Some tips for your application 🫡
Understand the Role: Before applying, make sure you fully understand the responsibilities and requirements of the Cyber Security Consultant position. Familiarise yourself with the key skills mentioned in the job description, such as knowledge of security governance frameworks and stakeholder engagement.
Tailor Your CV: Customise your CV to highlight relevant experience and skills that align with the job description. Emphasise your certifications like CISSP or CISM, and any experience you have with security assurance in large projects.
Craft a Compelling Cover Letter: Write a cover letter that showcases your passion for cybersecurity and your understanding of the company's mission. Mention specific examples of how you've successfully managed security risks in previous roles and how you can contribute to Welsh Water's goals.
Proofread Your Application: Before submitting, carefully proofread your application materials. Check for spelling and grammatical errors, and ensure that all information is clear and concise. A polished application reflects your attention to detail, which is crucial in cybersecurity.
How to prepare for a job interview at Dwr Cymru Welsh Water
✨Showcase Your Certifications
Make sure to highlight your relevant certifications like CISSP, CISM, or CISA during the interview. These credentials demonstrate your expertise and commitment to the field of cyber security, which is crucial for the role.
✨Understand Security Frameworks
Familiarise yourself with key frameworks such as NIST Cybersecurity Framework and ISO27001. Be prepared to discuss how you've applied these in past projects, as this will show your practical knowledge and ability to integrate security into business processes.
✨Communicate Risks Clearly
Practice explaining complex security concepts in simple terms. You'll need to communicate risks effectively to both technical and non-technical stakeholders, so demonstrating your communication skills can set you apart from other candidates.
✨Prepare for Scenario Questions
Expect scenario-based questions where you'll need to outline how you'd handle specific security challenges. Think about past experiences where you've successfully managed security risks and be ready to share those examples.
