Cyber Security Consultant

• Lead or assist cyber risk assessments, maturity reviews, and control testing.
• Implementing frameworks and standards such as but not limited to ISO 27001, Cyber Essentials, Defence Cyber Certification, and the Cyber Assessment Framework.
• Help develop and update security policies, procedures, and standards.
• Take part in client workshops, interviews, and requirements gathering exercises.
• Prepare clear and accurate reports, summaries, and project documentation.
• Contribute to the operation and improvement of internal management systems
• Contribute to internal knowledge-sharing and training

Do you have experience in NIST standards?, We're looking for consultants who can utilise their professional experience and consultancy skills to provide security advice to our customers., We are seeking Cyber Security Consultants who want to make a meaningful impact whilst adding real value to our growing consultancy and the services we deliver. This role is suited to individuals who thrive working to high standards, take ownership of their work, and contribute positively to a culture built on mutual support and respect., * Minimum 2 years' experience in cyber security or a related field.

• Knowledge and experience of one or more of the following frameworks - ISO 27001, ISO 22301, CAF, DCC, PCI-DSS and NIST.
• Knowledge of information assurance and cyber security principles.
• Ability to communicate and work closely with customers to understand their business challenges.
• The ability to translate technical security issues into clear, practical advice.
• A recognised audit qualification.
• Cyber Advisor and/or Cyber Essentials/ICA Assessor certification.
• UK Cyber Security Council Professional registration status.
• Strong written and verbal communication skills.
• Good analytical skills and attention to detail.
• Proficient in M365.

We are a boutique cyber security consultancy specialising in Governance, Risk and Compliance (GRC). We focus on delivering high-quality, practical advice that helps organisations understand and strengthen their security, meet regulatory requirements, and improve resilience.