At a Glance
- Tasks: Align and govern Security Incident and Vulnerability Management processes across multiple suppliers.
- Company: Join a leading client transforming Defence with a collaborative approach.
- Benefits: Competitive daily rate, hybrid working, and long-term contract until November 2026.
- Other info: Opportunity for growth in a dynamic, multi-supplier environment.
- Why this job: Make a real impact in cyber security while working with top industry professionals.
- Qualifications: Experience in Security Incident Management and strong stakeholder engagement skills required.
The predicted salary is between 40000 - 50000 £ per year.
A new contract opportunity is available for a Cyber Security Consultant with experience in Incident Management, Vulnerability Management, and SIAM.
Initial contract until November 2026
£570 per day via Umbrella
Hybrid working – average 2 days per week onsite
Locations: Preston, Birmingham or London
SC Clearance required
ABOUT THE CLIENT
Our client is delivering a large-scale Defence transformation programme, transitioning to a complex multi-supplier operating model. They require an experienced Cyber Security Consultant to help establish a consistent and governed approach to Security Incident and Vulnerability Management across multiple service providers.
THE ROLE
As the Cyber Security Consultant, you will be responsible for aligning and governing Security Incident Management and Vulnerability Management processes across a complex SIAM environment. You will work closely with suppliers, operational teams, and client stakeholders to ensure incidents and vulnerabilities are managed consistently, reported effectively, and supported by appropriate evidence and governance controls. This role focuses on coordination, oversight, and process alignment rather than hands-on SOC operations, incident response, or vulnerability remediation.
WHAT YOU WILL BE DOING
- Reviewing and aligning supplier processes for Security Incident Management and Vulnerability Management
- Establishing consistent governance, escalation, and reporting standards across multiple suppliers
- Defining and governing incident severity classifications and escalation thresholds
- Supporting vulnerability prioritisation approaches using frameworks such as CVSS, KEV, and EPSS
- Coordinating suppliers within a SIAM model to ensure consistent process adoption and reporting
- Identifying gaps in process maturity, compliance, risk management, and operational readiness
- Governing the lifecycle of high-severity security incidents, ensuring appropriate escalation, communication, and reporting
- Overseeing vulnerability management activities from identification through to remediation or risk acceptance
- Monitoring remediation timelines, SLA adherence, and management of high-risk vulnerabilities
- Supporting audit, assurance, and compliance activities through evidence collection and governance reporting
- Producing clear, evidence-based reporting for governance forums and programme leadership
- Supporting the creation of a transition baseline to enable successful BAU handover
ESSENTIAL SKILLS
- Experience within Security Incident Management, Vulnerability Management, Cyber Governance, or Security Assurance roles
- Strong understanding of Security Incident Management lifecycles
- Strong understanding of Vulnerability Management lifecycles
- Risk, governance, and compliance processes
- Experience operating within SIAM or multi-supplier environments
- Ability to interpret outputs from SOC platforms and vulnerability management tools without direct operational ownership
- Strong stakeholder engagement and supplier management skills
- Experience working on large-scale transition, transformation, or service integration programmes
- Strong reporting, governance, and documentation capabilities
DESIRABLE EXPERIENCE
- Knowledge of NIST Cyber Security Framework (CSF)
- Familiarity with NCSC guidance and UK Government security standards
- Exposure to ISMS, audit, and assurance activities
- ITIL experience or understanding
- Defence, Government, or highly regulated industry experience
Security Incident & Vulnerability Management Consultant employer: Searchability
Our client is an exceptional employer, offering a dynamic work environment that fosters collaboration and innovation in the field of cyber security. With a strong focus on employee growth, they provide opportunities for professional development and skill enhancement, particularly in the context of a large-scale Defence transformation programme. The hybrid working model allows for flexibility, while the emphasis on governance and assurance ensures that employees are engaged in meaningful work that contributes to national security.
StudySmarter Expert Advice🤫
We think this is how you could land Security Incident & Vulnerability Management Consultant
✨Tip Number 1
Network like a pro! Reach out to your connections in the cyber security field, especially those who have experience with incident and vulnerability management. Attend industry events or webinars to meet potential employers and get your name out there.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of SIAM environments and governance processes. Be ready to discuss how you've handled incidents and vulnerabilities in the past, and think about examples that showcase your stakeholder engagement skills.
✨Tip Number 3
Don’t just apply through job boards; head over to our website and submit your application directly! This way, you can ensure your CV gets seen by the right people and you might even get a chance to stand out from the crowd.
✨Tip Number 4
Follow up after interviews! A quick thank-you email can go a long way in keeping you top of mind. Mention something specific from your conversation to show your genuine interest in the role and the company.
We think you need these skills to ace Security Incident & Vulnerability Management Consultant
Some tips for your application 🫡
Tailor Your CV:Make sure your CV speaks directly to the role of Cyber Security Consultant. Highlight your experience in Security Incident Management and Vulnerability Management, and don’t forget to mention any work you've done in SIAM environments. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this role. Share specific examples of your past experiences that relate to incident management and governance. We love a good story that showcases your expertise!
Showcase Your Governance Skills:Since this role focuses on governance and process alignment, make sure to highlight your experience in these areas. Talk about how you've established standards or improved processes in previous roles. We’re keen to see how you can bring that expertise to our team!
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don’t miss out on any important updates. Plus, it’s super easy – just a few clicks and you’re done!
How to prepare for a job interview at Searchability
✨Know Your Cyber Security Basics
Make sure you brush up on the fundamentals of Security Incident Management and Vulnerability Management. Understand the lifecycles and key processes involved, as well as frameworks like CVSS and NIST CSF. This knowledge will help you answer technical questions confidently.
✨Showcase Your Stakeholder Engagement Skills
Prepare examples that highlight your experience in managing suppliers and engaging with stakeholders. Think about times when you successfully aligned processes or improved communication. This role is all about coordination, so demonstrating your interpersonal skills is crucial.
✨Be Ready to Discuss Governance and Compliance
Since this position focuses on governance and assurance, be prepared to talk about your experience with compliance processes and risk management. Have specific examples ready that showcase how you've contributed to governance frameworks in previous roles.
✨Ask Insightful Questions
At the end of the interview, don’t forget to ask questions that show your interest in the role and the company. Inquire about their current challenges in incident and vulnerability management or how they measure success in this area. This not only shows your enthusiasm but also helps you gauge if the role is the right fit for you.
