Cyber Security Consultant

We are looking for an ambitious Cybersecurity Consultant to join us and develop into a client-facing advisory role.

We're ideally looking for somebody based in Scotland, that's able to travel independently to Aberdeen and the surrounding area on an occassional / ad-hoc basis.

This position is ideal for someone with early cybersecurity experience who wants to grow quickly, learn directly from an experienced vCISO, and gain real responsibility with clients.

You will support delivery for one of our major vCISO engagements (around two days per week) while also helping build internal cybersecurity assets, playbooks, and DRP content., * Support delivery of vCISO engagements, including governance, risk management, reporting, and advisory.

• Assist in the development of security strategies and improvement roadmaps for client organisations.
• Support governance documentation, risk registers, cyber maturity assessments and client presentations.
• Contribute to threat analysis, vulnerability management and DRP content creation.
• Help produce blogs, frameworks, training materials and cybersecurity guidance.
• Attend client meetings (remote or on-site) and gradually assume more responsibility over time.

Do you have a Master's degree?, We want someone who can help clients to understand the need and requirements of ISO 27001 and get the full value out of Microsoft Defender, the wider M365 security stack, and other security tools that clients might be using. Therefore, we are particularly interested in candidates with experience in:

• ISO27001 experience
• Microsoft 365 security administration
• Microsoft Azure AD / Entra ID
• Microsoft Defender suite (Defender for Endpoint, Identity, Cloud Apps, etc.)
• Security baselines, conditional access, zero trust principles
• Experience configuring or monitoring E5 security features, * Master's degree or equivalent experience in Cybersecurity, Information Security or Computer Science.
• Around 1-3 years' experience in cybersecurity, GRC, SOC, security operations, IT security or consultancy.
• Good understanding of ISO 27001, NIST CSF and Cyber Essentials.
• Strong written communication skills with the ability to produce structured documentation, policies and reports.
• Confident, curious, organised and eager to learn.
• Interested in developing into a more independent vCISO or senior consultant role., * How much experience of ISO 27001 and other cyber security frameworks do you have?
• Are you able to travel indepently to Aberdeen - as required by client engagements? Other travel around the UK may also be required from time to time.

Education:

• Master's (preferred)

Experience:

• Cybersecurity: 3 years (required)

Job Types: Full-time, Permanent

Pay: £34,000.00 per year

Benefits:

• Company events
• Company pension
• Flexitime
• Referral programme
• Work from home

Onca Technologies is a fast-growing cybersecurity consultancy providing virtual CISO (vCISO) services and Digital Risk Protection (DRP) to private and public sector organisations. Led by our CEO and Lead vCISO, we deliver strategic security guidance, cyber maturity assessments, threat intelligence, Microsoft 365 security configuration, and ongoing advisory to help clients build resilience and reduce cyber risk. We're now expanding our team to support growing demand and to strengthen our capability across Microsoft security tooling.