At a Glance
- Tasks: Align and standardise security processes across suppliers in a Defence environment.
- Company: Join a leading organisation focused on Cyber Security within the Defence sector.
- Benefits: Competitive daily rate, flexible work-from-home options, and professional growth opportunities.
- Other info: SC clearance required; ideal for those passionate about security in a regulated environment.
- Why this job: Make a real impact on national security while working with top-tier professionals.
- Qualifications: Experience in Cyber Security Governance and strong understanding of incident management.
The predicted salary is between 39600 - 44640 £ per year.
Duration: 6 months
Location: 1 day a week on site in London / Preston / Birmingham - 4 days WFH
Employment type: Inside IR35
Rate: £550 - £580 a day
SC cleared role - must have current active clearance
Sole British nationals only due to nature of the project
Role Summary
The Security Incident & Vulnerability Management Consultant operates within the Operational Integrator (OI) function to support the transition to a multi-supplier (SIAM) model within a Defence environment. The role focuses on understanding, aligning and governing existing high-severity security incident management (S3/S4) and vulnerability management processes across suppliers. Ensuring a consistent, risk-based approach in line with client policy and regulatory requirements, supported by appropriate evidence. The outcome is a coherent, evidence-driven view of security risk, covering both active incidents and underlying vulnerabilities, with processes standardised and ready for BAU handover. This is a governance and coordination role, not a hands-on SOC, incident response, or vulnerability remediation function.
Key Responsibilities
- Align and standardise supplier processes for high-severity incidents (S3/S4) and vulnerability management.
- Establish governance for incident severity, escalation, vulnerability prioritisation (CVSS, KEV, EPSS), and risk acceptance.
- Coordinate multiple suppliers to ensure consistent delivery and compliance.
- Govern major incident lifecycle activities, including escalation, communication, reporting, and assurance.
- Oversee vulnerability management from identification through remediation and closure.
- Define audit-ready evidence requirements and ensure alignment with ISMS and control frameworks.
- Deliver governance reporting and support transition to BAU operations.
Essential Skills & Experience
- Experience in Cyber Security Governance, Incident Management, or Vulnerability Management.
- Strong understanding of incident response and vulnerability management lifecycles.
- Experience working within multi-supplier or SIAM environments.
- Ability to interpret and govern SOC and vulnerability management outputs.
- Knowledge of NIST CSF, NCSC guidance, or UK Government security frameworks.
- Experience within Defence or other highly regulated environments.
- Exposure to ISMS, audit, assurance, and ITIL practices.
Cyber Security Consultant in London employer: CBSbutler Ltd.
As a Cyber Security Consultant with us, you'll be part of a dynamic team dedicated to enhancing security governance within a multi-supplier Defence environment. We offer a flexible work culture with one day on-site in vibrant cities like London, Preston, or Birmingham, and four days working from home, allowing for a balanced professional and personal life. Our commitment to employee growth is evident through continuous learning opportunities and the chance to work on high-impact projects that shape the future of cyber security.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Consultant in London
✨Tip Number 1
Network like a pro! Reach out to your connections in the cyber security field, especially those who have experience with incident and vulnerability management. A friendly chat can lead to insider info about job openings or even a referral.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of NIST CSF and UK Government security frameworks. We want you to be able to discuss how you can align and standardise processes effectively, so practice articulating your thoughts clearly.
✨Tip Number 3
Showcase your experience in multi-supplier environments during interviews. We know that coordinating multiple suppliers is key in this role, so share specific examples of how you've successfully managed similar situations in the past.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Cyber Security Consultant in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Cyber Security Consultant role. Highlight your experience in incident and vulnerability management, especially in multi-supplier environments. We want to see how your skills align with the key responsibilities outlined in the job description.
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this role. Mention your understanding of governance and coordination in cyber security, and how you can contribute to our mission at StudySmarter. Keep it concise but impactful!
Showcase Relevant Experience:When filling out your application, be sure to showcase any relevant experience you have in cyber security governance or working within Defence environments. We’re looking for candidates who can demonstrate their knowledge of frameworks like NIST CSF and NCSC guidance.
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it gives you a chance to explore more about what we do at StudySmarter!
How to prepare for a job interview at CBSbutler Ltd.
✨Know Your Cyber Security Frameworks
Familiarise yourself with key frameworks like NIST CSF and NCSC guidance. Be ready to discuss how these frameworks apply to incident and vulnerability management, as well as how you've used them in past roles.
✨Showcase Your Governance Experience
Prepare examples that highlight your experience in governance within multi-supplier environments. Discuss specific instances where you aligned processes or ensured compliance, as this role heavily focuses on coordination and standardisation.
✨Understand the Role's Focus
This position is about governance and coordination, not hands-on incident response. Be clear about your understanding of this distinction and prepare to explain how your skills align with overseeing major incident lifecycles and vulnerability management.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving skills in high-severity incident scenarios. Think through potential situations you might face in this role and how you would govern the response, ensuring a risk-based approach.
