Lead Cyber Security Consultant (Defence)

Sanderson Recruitment Plc
Jacobstowe, United Kingdom
8 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Remote
Jacobstowe, United Kingdom

Tech stack

Amazon Web Services (AWS)
Azure
Cloud Computing Security
Computer Security
PCI Data Security Standards
Systems Development Life Cycle
Information Security Management System
Firewalls (Computer Science)
Containerization

Job description

As a Lead Cyber Security Consultant, you'll take ownership of multiple client engagements, delivering expert advice across governance, risk, compliance, and Secure by Design practices.

You'll work closely with senior stakeholders to assess risk, define security controls, deliver assurance activities, and support secure architecture across complex, high-profile systems.

This is a hands-on, strategic role that combines leadership, client engagement, and technical depth., * Lead Secure by Design and security assurance activities across MOD and Public Sector programmes

  • Support and guide the application of risk management frameworks, ISMS, and Enterprise Security Risk Management
  • Conduct and lead workshops with technical and business stakeholders
  • Produce clear, actionable reporting on risk, vulnerabilities, and remediation
  • Provide pragmatic, proportionate recommendations aligned to business goals
  • Support secure design across cloud and on-premise platforms
  • Contribute to internal knowledge sharing and thought leadership

Requirements

  • Strong background in Technical/Security Architecture or Governance, Risk & Compliance
  • Experience working in Defence/MOD environments
  • Strong analytical and communication skills, with the ability to influence senior stakeholders
  • Passion for continuous learning and high-quality security outcomes

Desirable Knowledge

  • SAC (Security Assurance Coordinator) or Delivery Team Security Lead experience

  • MOD/GDS Secure by Design

  • Familiarity with:

  • JSP440, JSP604/453, JSP490

  • Supplier Chain Assurance

  • GDPR, PCI DSS, ICO

  • ISO 27001, NIST CSF, CIS Controls v8

Skills in:

  • Threat modelling (kill chain, attack trees, etc.)
  • Cloud security (AWS, Azure), containerisation, Firewalls
  • Secure SDLC
  • HLD/LLD review
  • ITHC scoping and remediation

Certifications (Highly Desirable)

  • CIISEC
  • UK Cyber Security Council registration (Chartered or Principal)
  • AWS/Azure Security (Professional)
  • CCSP, CISSP, CISM
  • ISO 27001 Lead Auditor

Security Vetting/Clearance

  • Active and transferable DV clearance is essential
  • Must be a sole British National and UK-based

Benefits & conditions

UK Remote (travel required approx. 60%/3 days onsite per week) Full-time & Permanent | Consultancy Competitive salary + Excellent benefits, * Competitive salary and benefits package

  • Private healthcare & wellbeing support
  • Flexible working (remote with travel)
  • Career pathways, mentoring and continuous learning
  • Inclusive, supportive culture

About the company

We're working with an established and growing UK cybersecurity consultancy expanding its Defence and Public Sector practice.

Apply for this position