At a Glance
- Tasks: Lead complex cloud security projects and mentor a dynamic team of consultants.
- Company: Join Quorum Cyber, a fast-growing leader in cyber security with a mission to protect organisations.
- Benefits: Enjoy competitive salary, flexible working options, and opportunities for professional growth.
- Other info: Be part of an inclusive workplace that values diversity and equal opportunity.
- Why this job: Make a real impact in the cyber security landscape while working with cutting-edge Microsoft technologies.
- Qualifications: Deep expertise in Microsoft cloud security and strong leadership skills required.
The predicted salary is between 70000 - 80000 £ per year.
Company Description
At Quorum Cyber, we’re on a mission to help good people win.
Founded in Edinburgh in 2016, we’re one of the fastest growing cyber security companies in the UK and North America, serving over 400 customers on four continents.
We protect organisations against the rising threat of cyber-attacks, enabling them to thrive in an increasingly unpredictable and inhospitable digital landscape.
As a Microsoft-only security house, a Microsoft Solutions Partner for Security, a member of the Microsoft Intelligent Security Association (MISA), and winner of the Microsoft Security MSSP of the Year 2025 award, we offer a unified security ecosystem comprised of innovative services, all delivered through our customer platform, Clarity.
In September 2024, Quorum Cyber acquired Canada-based, Microsoft Solutions Partner for Security, Difenda.
This was closely followed in December 2024 by the acquisition of US-based, Kivu Consulting, a global cyber security firm with world-leading incident response capabilities.
Role Purpose
To act as the senior technical SME and technical/team lead for customer-facing Professional Services engagements across Microsoft cloud security and XDR managed-service onboarding.
The role leads complex technical delivery, provides design assurance, supports the development of the Cloud Security consulting team, and acts as the technical escalation point for Microsoft Defender XDR, Sentinel, Entra, Azure and Microsoft 365 security work.
Resource allocation, utilisation forecasting and overall commercial governance remain led by the Head of Microsoft Security Professional Services, with this role providing technical input and early escalation of risks, blockers and capability gaps.
Responsibilities
- Lead complex customer-facing cloud security projects as the technical delivery lead, from discovery, workshops and architecture through implementation, documentation, customer sign-off and transition into managed service.
- Act as the technical authority for cloud security engagements, shaping the technical approach and guiding decisions across design, implementation, risks, dependencies and quality.
- Provide day-to-day technical leadership, coaching and mentoring to Cloud Security Consultants, supporting capability development, consistent delivery standards and confidence with customers.
- Act as the technical escalation point for the Cloud Security team, supporting complex design, implementation and customer-facing challenges.
- Support the Head of Microsoft Security Professional Services with technical input into delivery planning, project risks, capability gaps, team development and delivery quality.
- Lead onboarding readiness assessments and transition-to-service planning for XDR managed-service customers, ensuring integrations, data sources, controls, alerting, handover and acceptance criteria are complete.
- Own or lead technical delivery across Azure, Microsoft 365, Microsoft Defender XDR, Microsoft Sentinel, Microsoft Entra and wider Microsoft security capabilities.
- Design and assure advanced cloud security architectures, governance models and operating models aligned to customer requirements, Microsoft best practice and managed-service delivery.
- Own and quality-review HLDs, LLDs, implementation plans, service transition documents, recommendations and customer-facing deliverables.
- Provide high-value SME input into presales, technical discovery, So W input, proposal review and shaping of cloud security service offerings.
- Work closely with project managers, SOC, managed services, engineering and customer stakeholders to ensure successful delivery, clean handover and ongoing service operability.
- Drive standardisation and reuse of delivery methods, documentation templates, design patterns and cloud security offerings, while staying current with emerging Microsoft security capabilities, cloud threats, technologies and compliance mandates.
- Required Skills
- Deep expertise in Microsoft cloud security, including Azure, Microsoft Defender XDR, Microsoft Sentinel, Microsoft Entra and Microsoft 365 security services.
- Advanced knowledge of the Defender suite, Sentinel architecture, Entra ID, identity security, cloud workload protection, endpoint security, threat detection and security operations.
- Advanced knowledge of cloud security frameworks and guidance, including CIS, NIST, ISO 27001, Azure Cloud Adoption Framework and Microsoft Cybersecurity Reference Architecture.
- Strong experience designing and implementing IAM, RBAC, Conditional Access, encryption, network security, logging, monitoring, secure Dev Ops and governance controls.
- Expert-level technical project leadership, including leading workshops, shaping the technical approach, managing technical risks/issues, guiding design decisions and driving customer confidence.
- Strong ability to own and quality-assure HLDs, LLDs, So W technical inputs, implementation plans, project artefacts and service transition documentation.
- Strong coaching and mentoring skills, with the ability to support team development, provide constructive technical feedback and build capability in others.
- Commercial awareness of Professional Services delivery, including scope, effort, utilisation, margin, risks and customer satisfaction, with the ability to elevate commercial or delivery risks early.
- Leadership, communication, stakeholder‑management, analytical thinking and problem‑solving skills across technical, operational and business audiences.
- Relevant Microsoft security certifications are desirable. CCSP, CISSP or similar cloud/security certifications are desirable.
- Success Criteria
- Complex customer projects have clear technical leadership from discovery through implementation, sign-off and transition into managed service.
- Technical delivery is high quality, customer-facing outputs are clear, and engagements achieve agreed outcomes.
- Cloud Security Consultants are supported, coached and developed, with stronger technical confidence and consistent delivery standards across the team.
- XDR managed-service customers are transitioned successfully into BAU operations with clear acceptance criteria, documentation and stakeholder alignment.
- Technical risks, blockers, dependencies and capability gaps are surfaced early to the Head of Microsoft Security Professional Services and project stakeholders.
- HLDs, LLDs, So Ws and delivery artefacts are technically accurate, consistent, commercially realistic and reusable.
- Presales and scoping inputs are technically sound, realistic and aligned to the team’s delivery capability.
- The Cloud Security team is recognised internally as a high-value SME function for Microsoft cloud security delivery.
- SOC, engineering and managed services teams receive a clean handover and are set up to operate effectively.
- Equal Opportunity & Diversity
We are an equal opportunity employer.
We are committed to fostering an inclusive, accessible, and equitable workplace where all qualified applicants receive fair consideration.
We do not discriminate on the basis of race, national or ethnic origin, colour, religion, age, sex, sexual orientation, gender identity or expression, marital status, family status, disability, or any other characteristic protected under applicable federal, provincial, or territorial human rights legislation.
The information requested below is collected to help us meet our employment equity and reporting obligations, and to support our ongoing diversity and inclusion initiatives.
Providing this information is entirely voluntary.
It will not be shared with hiring managers and will not be used in any hiring decision.
Declining to provide this information will not affect your application in any way.
#J-18808-Ljbffr
StudySmarter Expert Advice🤫
We think this is how you could land Lead Cloud Security Consultant in Edinburgh
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Cyber UK, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through Cyber UK
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Cyber UK. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace Lead Cloud Security Consultant in Edinburgh
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Cyber UK insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Cyber UK that you’re committed to staying ahead in the game.
How to prepare for a job interview at Cyber UK
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at Cyber UK to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Cyber UK.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.