At a Glance
- Tasks: Deliver top-notch security consultancy and lead risk assessments for defence and government projects.
- Company: A growing security consultancy with a strong team culture and remote-first approach.
- Benefits: Flexible work environment, competitive salary, and opportunities for professional growth.
- Other info: Supportive environment with opportunities to mentor less experienced colleagues.
- Why this job: Join a collaborative team and make a real impact in the security sector.
- Qualifications: Experience in information assurance and strong knowledge of security frameworks required.
The predicted salary is between 60000 - 80000 € per year.
A growing security consultancy is looking to strengthen its defence and public sector practice with an experienced mid to senior level consultant. This is a growth hire driven by an expanding portfolio. They are remote first but have done an amazing job at making sure their culture is a huge part of what makes them great as a business. It's a team that gets stuck in together. No egos, just people who really know their stuff and look out for each other. You will work across a range of complex, regulated programmes and will advise on risk and compliance, leading assurance activities and helping clients build security postures that stand up to scrutiny. The role suits someone who is confident being client facing and working in a collaborative environment.
What You’ll Be Doing:
- Deliver information assurance and GRC consultancy across defence and central government programmes
- Lead and conduct risk assessments, control reviews, gap analysis, and threat assessments
- Produce and maintain accreditation documentation including RMADS, SyOps, security cases and risk registers
- Apply and advise on frameworks including ISO/IEC 27001, NIST SP 800-53 and JSP 440 / JSP 604
- Engage confidently with programme teams, risk owners, SROs and accrediting authorities
- Own client workstreams and deliverables, managing quality and timelines
- Produce clear, well-evidenced reports and briefings for technical and non-technical audiences
- Support the development of less experienced colleagues within the team
What you’ll need:
- Two or more of the following:
- Solid, hands-on experience in information assurance, security assurance or GRC
- Proven delivery in defence or central government environments
- Strong working knowledge of ISO/IEC 27001, NIST SP 800-53 and the Cyber Assessment Framework
- Practical experience with defence accreditation frameworks - JSP 440 and JSP 604
- Experience producing RMADS, SyOps and supporting accreditation documentation
- Confident engaging with senior stakeholders, risk owners and accrediting authorities
- SC clearance or demonstrable eligibility
Desirable:
- CCP certification
- CISSP, CISM or equivalent
- Experience in OT / ICS or critical national infrastructure environments
- ISO 27001 Lead Auditor or Lead Implementer qualification
- Background in public sector, civil service or the military
Interested? Apply now for more information!
Security Consultant employer: The Engage Partnership Recruitment
Join a dynamic and supportive team at a leading security consultancy that prioritises a collaborative work culture, where every member is valued and encouraged to grow. With a remote-first approach, you will have the flexibility to work from anywhere while engaging in meaningful projects across defence and public sectors, enhancing your skills and career trajectory. The company fosters an environment free of egos, promoting teamwork and knowledge sharing, making it an excellent place for professionals looking to make a significant impact.
Contact Detail:
The Engage Partnership Recruitment Recruiting Team
StudySmarter Expert Advice🤫
We think this is how you could land Security Consultant
✨Tip Number 1
Network like a pro! Reach out to your connections in the security consultancy field. Attend industry events or webinars, and don’t be shy about introducing yourself. We all know that sometimes it’s not just what you know, but who you know!
✨Tip Number 2
Prepare for those interviews by brushing up on your knowledge of ISO/IEC 27001 and NIST SP 800-53. We recommend creating a cheat sheet with key points and examples from your experience. This way, you’ll be ready to impress when discussing risk assessments and compliance.
✨Tip Number 3
Showcase your collaborative spirit! During interviews, share examples of how you’ve worked with teams to tackle complex projects. We want to see that you’re not just a lone wolf but someone who thrives in a team environment, just like the culture at the consultancy.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing candidates who take the initiative to engage directly with us. So, go ahead and hit that apply button!
We think you need these skills to ace Security Consultant
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Security Consultant role. Highlight your experience in information assurance and GRC, especially in defence or central government environments. We want to see how your skills match what we're looking for!
Showcase Your Achievements:When writing your application, don’t just list your responsibilities. Instead, showcase your achievements! Use specific examples of how you've led risk assessments or produced accreditation documentation. This helps us see the impact you've made in previous roles.
Be Clear and Concise:We appreciate clarity! When you write your application, keep it clear and concise. Avoid jargon where possible and make sure your reports and briefings are easy to understand for both technical and non-technical audiences.
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, we love seeing candidates who take that extra step to connect with us directly.
How to prepare for a job interview at The Engage Partnership Recruitment
✨Know Your Frameworks
Make sure you brush up on ISO/IEC 27001, NIST SP 800-53, and JSP 440/JSP 604. Be ready to discuss how you've applied these frameworks in your previous roles, as this will show your expertise and confidence in the subject matter.
✨Showcase Your Client Engagement Skills
Since the role involves engaging with senior stakeholders and clients, prepare examples of how you've successfully navigated client relationships in the past. Highlight your ability to communicate complex information clearly to both technical and non-technical audiences.
✨Prepare for Risk Assessments
Be ready to talk about your experience with risk assessments, control reviews, and gap analysis. Think of specific instances where your insights led to improved security postures or compliance outcomes, as this will demonstrate your hands-on experience.
✨Emphasise Team Collaboration
This consultancy values a collaborative culture, so be prepared to discuss how you've worked effectively within teams. Share examples of mentoring less experienced colleagues or contributing to team success, as this aligns with their ethos of looking out for one another.
