Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cyber security audits and develop risk management frameworks to ensure compliance.
- Company: Join Methods, a Β£100M+ IT Services Consultancy transforming the public sector.
- Benefits: Enjoy flexible working, 25 days annual leave, and wellness support.
- Why this job: Make a real impact on society through innovative and secure solutions.
- Qualifications: Experience in cyber security, risk management, and internal audit is essential.
- Other info: Collaborative environment with opportunities for professional development and fun social events.
The predicted salary is between 48000 - 72000 Β£ per year.
Key Responsibilities
- Lead and execute cyber security audits, ensuring compliance with regulatory and industry standards.
- Develop and maintain risk management frameworks, aligning with best practices such as ISO 27001, NIST, and GDPR.
- Collaborate with stakeholders to identify and mitigate cyber risks across digital and operational infrastructures.
- Provide expert guidance on cyber risk governance, resilience, and assurance strategies.
- Assess third-party risk management practices and conduct security audits on suppliers and partners.
- Work closely with CISOs, IT, and compliance teams to drive a proactive security culture.
- Report findings and recommendations to senior leadership, ensuring risk mitigation strategies are effectively implemented.
Qualifications & Certifications
- ChCSP in the Audit and Assurance (specialism) β Chartered status with the UK Cyber Security Council (CSC)
- PriCSP in the Audit and Assurance (specialism) β Principal level with the CSC, with a commitment to attaining Chartered status
- CMIIA β Chartered Member of the Institute of Internal Auditors, with willingness to work towards ChCSP
- CISA β ISACA Certified Information Systems Auditor, with willingness to work towards ChCSP
- QiCA β Institute of Internal Auditors Qualification in Computer Auditing, with willingness to work towards ChCSP
Professional Certifications of Interest
- IRM Chartered Risk Manager certification
- ISACA certifications such as CISM, CRISC, CGEIT
- CISSP (Certified Information Systems Security Professional)
Other Essential Skills
- Proven experience in cyber security risk management and audit, ideally within regulated industries
- Strong knowledge of security frameworks, including ISO 27001, NIST, CIS Controls, and GDPR compliance
- Ability to conduct security assessments, risk analyses, and internal audits
- Familiarity with security tooling and governance platforms (e.g., SIEM, GRC platforms)
- Excellent communication skills with the ability to influence senior stakeholders
- A proactive mindset with the ability to work independently and as part of a team
About the Company
Methods is a Β£100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses β with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public sector, Methods is now building a significant private-sector client portfolio. Methods was acquired by the Alten Group in early 2022.
Role Overview
Methods is a leading digital transformation consultancy, partnering with public and private sector organisations to deliver innovative and secure solutions. With a strong focus on governance, risk, and compliance (GRC), we help businesses navigate complex security landscapes while ensuring regulatory and operational resilience. We are seeking a Principal Cyber Security Risk & Audit Consultant to join our growing team. This role is ideal for a professional with a strong background in cyber security, risk management, and internal audit. The ideal candidate will have experience across both the public and private sectors, with exposure to or experience in management consultancy. Strong team building and leadership experience is highly desirable.
Benefits & Development
- Autonomy to develop and grow your skills and experience
- Be part of exciting project work that is making a difference in society
- Strong, inspiring and thought-provoking leadership
- A supportive and collaborative environment
- Development β access to LinkedIn Learning, a management development programme, and training
- Wellness β 24/7 confidential employee assistance programme
- Flexible Working β including home working and part time
- Social β office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes
- Time Off β 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year
- Volunteering β 2 paid days per year to volunteer in our local communities or within a charity organisation
Principal audit & assurance consultant in City of Westminster employer: Methods
Contact Detail:
Methods Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Principal audit & assurance consultant in City of Westminster
β¨Tip Number 1
Network like a pro! Reach out to your connections in the cyber security field, especially those who work at Methods or similar companies. A friendly chat can lead to insider info about job openings and even referrals.
β¨Tip Number 2
Show off your skills! Prepare a portfolio or case studies that highlight your experience with cyber security audits and risk management frameworks. This will give you an edge during interviews and show that you mean business.
β¨Tip Number 3
Stay updated on industry trends! Follow relevant blogs, podcasts, and news sources to keep your knowledge fresh. This will not only help you in interviews but also demonstrate your passion for the field.
β¨Tip Number 4
Apply through our website! We love seeing candidates who take the initiative. Plus, it gives you a chance to showcase your enthusiasm for joining Methods and being part of our mission to transform the public sector.
We think you need these skills to ace Principal audit & assurance consultant in City of Westminster
Some tips for your application π«‘
Tailor Your CV: Make sure your CV reflects the key responsibilities and qualifications mentioned in the job description. Highlight your experience in cyber security audits and risk management frameworks to show us you're the right fit for the role.
Craft a Compelling Cover Letter: Use your cover letter to tell us why you're passionate about cyber security and how your skills align with our mission. Share specific examples of your past work that demonstrate your expertise in compliance and risk mitigation.
Showcase Your Certifications: List any relevant certifications you hold, like CISA or CISSP, prominently in your application. This will help us see your commitment to professional development and your readiness to tackle the challenges of the role.
Apply Through Our Website: We encourage you to apply directly through our website. Itβs the best way for us to receive your application and ensures youβre considered for this exciting opportunity with Methods!
How to prepare for a job interview at Methods
β¨Know Your Frameworks
Make sure youβre well-versed in security frameworks like ISO 27001, NIST, and GDPR. Be ready to discuss how you've applied these in past roles, as this will show your practical understanding and ability to lead cyber security audits.
β¨Showcase Your Communication Skills
Since you'll be collaborating with stakeholders and reporting to senior leadership, practice articulating complex cyber security concepts in a clear and concise manner. Use examples from your experience to demonstrate how you've influenced decision-making in previous roles.
β¨Prepare for Scenario Questions
Expect scenario-based questions that assess your problem-solving skills in risk management. Think of specific instances where you identified and mitigated cyber risks, and be prepared to explain your thought process and the outcomes.
β¨Highlight Your Teamwork Experience
This role requires collaboration with various teams, so share examples of how you've successfully worked within a team to drive a proactive security culture. Emphasise your leadership experience and how youβve built strong relationships with colleagues and stakeholders.