Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join us to provide security advice and manage client projects in a dynamic environment.
- Company: CDS Defence & Security is a leading consultancy focused on making the world safer through innovative solutions.
- Benefits: Enjoy competitive salary, pension, and opportunities for professional growth in a supportive culture.
- Why this job: Be part of a mission-driven team that values collaboration and offers real impact in defence and security.
- Qualifications: Ideal candidates should have relevant CS&IA qualifications and a passion for risk management.
- Other info: Flexible working options available; must be willing to work at secure government facilities.
The predicted salary is between 28800 - 48000 £ per year.
CS&IA Risk and Governance Consultants (Junior to Principal levels)
2 days ago Be among the first 25 applicants
Direct message the job poster from CDS Defence & Security
Head of People @ CDS Defence & Security | Strategic People Management
Company Overview
CDS Defence & Security (CDS DS) is part of the Bailie Group – a family-owned group of agencies and consultancies with the collective mission to improve people’s lives by sharing knowledge.
CDS DS is an industry-leading technical consultancy delivering world-class services in Support Engineering, Cyber Security & Information Assurance, Training & Leadership Development and Communications. We exist to make the world a safer place and do this by providing sophisticated training solutions, operational support, information assurance and engineering support to a breadth of clients within the defence and security domain.
With over 50 years’ experience, we have a well-deserved reputation for providing our clients with complete peace of mind. From delivering forward-thinking training to the UK Armed Forces to working in partnership with Tier 1 defence and security providers on some of the most significant defence programmes of recent years, the CDS DS name has become synonymous with trust, quality, collaboration, and a truly visionary approach to the most complex of problems.
Main Responsibilities
- The successful candidate will be a knowledgeable, enthusiastic and conscientious individual who has the relevant CS&IA qualifications, certifications and experience in line with the level of consultant you are applying for. You will work on a range of client-facing projects, large and small, but will also be expected to contribute to winning new business and managing delivery. To be successful in this role, you need to have the ability to work on multiple projects and with many stakeholders concurrently. Your key responsibilities will encompass the following:
- Provide security advice and guidance for clients in ‘business as usual’, technical refresh and new project environments.
- Identify and establish good security governance to meet client business requirements.
- Identify client CS&IA risks within client operational environments and determine appropriate remediation based on business risk appetite that protects information assets from loss, misuse, leakage or corruption.
- Perform compliance activity on client systems and business processes to assess the levels of CS&IA controls and identify gaps to address.
- Create or review client CS&IA policies and procedures to meet corporate and regulatory requirements.
- Build successful working relationships with team members, key customers and stakeholders that improves the value of the CS&IA services being performed.
- Work in partnership with clients to implement CS&IA controls in pragmatic ways that deliver investment value and support business operations.
- Mentor others within the CS&IA team in a technical and consultancy capacity.
- Proactively assist the Head of CS&IA Services in the strategy and growth of the BU.
The Ideal Candidate
The ideal candidate will meet the majority or all of the following (in line with the level of consultant you are applying for):
- Willingness to frequently work at secure government facilities (minimum 3 days/week for periods of time).
- Experience of delivering technical CS&IA consultancy within a Defence environment, or other UK Government sectors.
- Ability to provide technical CS&IA assurance, risk management and solutions within complex scenarios.
- Ability to conduct, deliver and maintain technical security risk assessments using established or novel approaches.
- Excellent verbal and written communication skills.
- High proficiency in all Microsoft Office applications.
- Ability to work on multiple projects and tasks concurrently, successfully balancing business and client priorities.
- Ability to provide high-quality work under pressure that delivers security outcomes to tight deadlines and manage client-stakeholder expectations.
- Ability to work effectively both individually and as a senior team member in a multi-disciplined organisation.
- Ability to coordinate and manage multi-disciplined CS&IA resources, including technical specialists, while providing coherent reporting to non-technical business stakeholders.
- Ability to provide threat detection and monitoring technologies and services.
- Ability to produce CS&IA incident response plans and coordinate desktop incident response exercises.
- Broad knowledge and application of common CS&IA bodies, standards, frameworks, guidelines and legislation, including:
- HMG/NCSC Information Assurance Policies, Standards and Guidelines
- Cross-government security accreditation and secure by design processes
- JSP440 (plus other standard MoD IA methods)
- DCPP’s Cyber Security Model
- List X, List N
- Office for Nuclear Regulation (ONR) Security Assessment Principles (SyAPs)
- NIST
- GDPR, DPA, Computer Misuse Act, Official Secrets Act
- NIS-D
- Flexibility to travel and work throughout the UK.
- Ambition to work in a challenging and rewarding role that provides real benefit to clients.
- A proactive interest in maintaining and enhancing technical and consultancy skills.
Examples of Professional Qualifications, Certifications and Security Clearances
- Full Member of CIISec and/or UK Cyber Security Council (Security and Information Risk Advisor, Auditor or Security Architect) or the agreement and ability to achieve such certification within 6 months of employment.
- Holder of current key security industry certifications such as COMPTIA Security +, CISSP, CISM, and ISO 27001CS&IA associated degree-level education (desirable)
- Current high-level security clearance and ability to maintain it.
In return, CDS DS will offer you a competitive salary, pension and package to reflect your knowledge, skills and experience as a senior CS&IA risk consultant.
CDS DS is a Defence Employer Recognition Scheme Gold Award winner.
Seniority level
-
Seniority level
Mid-Senior level
Employment type
-
Employment type
Full-time
Job function
-
Job function
Consulting and Information Technology
-
Industries
Defense & Space
Referrals increase your chances of interviewing at CDS Defence & Security by 2x
Cyber Security & Information Assurance Consultants
Gloucester, England, United Kingdom 1 hour ago
Gloucester, England, United Kingdom 1 day ago
Gloucester, England, United Kingdom 3 months ago
Gloucestershire, England, United Kingdom 3 weeks ago
Cyber Accelerator – National Security – Gloucester
Gloucester, England, United Kingdom 1 day ago
Cyber Accelerator – National Security – Gloucester
Gloucester, England, United Kingdom 1 day ago
Gloucester, England, United Kingdom 4 months ago
Gloucester, England, United Kingdom 1 week ago
Gloucestershire, England, United Kingdom 2 weeks ago
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
CS&IA Risk and Governance Consultants (Junior to Principal levels) employer: CDS Defence & Security
Contact Detail:
CDS Defence & Security Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land CS&IA Risk and Governance Consultants (Junior to Principal levels)
✨Tip Number 1
Familiarise yourself with the specific CS&IA frameworks and standards mentioned in the job description, such as JSP440 and NIST. This knowledge will not only help you understand the role better but also demonstrate your commitment to the field during interviews.
✨Tip Number 2
Network with professionals already working in the defence and security sector. Attend relevant industry events or join online forums where you can engage with current employees of CDS Defence & Security. This could provide you with insider insights and potentially a referral.
✨Tip Number 3
Prepare to discuss real-world scenarios where you've successfully managed CS&IA risks or implemented security controls. Use the STAR method (Situation, Task, Action, Result) to structure your responses, showcasing your problem-solving skills and experience.
✨Tip Number 4
Stay updated on the latest trends and challenges in cyber security and information assurance. Being knowledgeable about current events and advancements in the field will allow you to engage in meaningful conversations during interviews and show your passion for the industry.
We think you need these skills to ace CS&IA Risk and Governance Consultants (Junior to Principal levels)
Some tips for your application 🫡
Understand the Role: Before applying, make sure to thoroughly read the job description for the CS&IA Risk and Governance Consultant position. Understand the key responsibilities and required qualifications to tailor your application accordingly.
Highlight Relevant Experience: In your CV and cover letter, emphasise any relevant experience in CS&IA consultancy, especially within defence or government sectors. Use specific examples to demonstrate your skills in risk management and compliance activities.
Showcase Communication Skills: Given the importance of communication in this role, ensure that your written application reflects excellent verbal and written communication skills. Use clear and concise language, and avoid jargon unless necessary.
Tailor Your Application: Customise your CV and cover letter for this specific role. Mention how your qualifications align with the requirements listed in the job description, such as your ability to work on multiple projects and manage stakeholder expectations.
How to prepare for a job interview at CDS Defence & Security
✨Understand the Role and Responsibilities
Before the interview, make sure you thoroughly understand the job description and the key responsibilities. Familiarise yourself with CS&IA concepts and how they apply to the defence sector, as this will help you articulate your relevant experience and skills.
✨Showcase Your Technical Knowledge
Be prepared to discuss your technical qualifications and certifications in detail. Highlight any experience you have with security frameworks, risk assessments, and compliance activities, as these are crucial for the role.
✨Demonstrate Your Communication Skills
Since the role involves working with various stakeholders, it's essential to showcase your verbal and written communication skills. Practice explaining complex technical concepts in simple terms, as this will demonstrate your ability to engage with non-technical clients.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving abilities in real-world situations. Think of examples from your past experiences where you successfully identified risks or implemented security measures, and be ready to discuss the outcomes.
