Senior Security Consultant - Inside IR35 - SC Cleared

This role sits within the Cyber Compliance function and is responsible for holding service owners and delivery teams to account for evidencing ongoing compliance with the Network and Information Systems (NIS) Regulations. The role provides assurance, challenges evidence quality, and ensures NIS determinations are accurate, consistent, and audit-ready.

The post holder will lead the NIS determination process, oversee evidence production, and drive improvements to compliance processes and reporting across a regulated environment., * Lead and own the NIS determination process, ensuring services are correctly assessed and classified

• Hold service owners and teams accountable for gathering, maintaining, and presenting NIS compliance evidence
• Review and challenge compliance determinations and supporting evidence for quality, completeness, and traceability
• Provide assurance on NIS activities and advise on remediation where gaps are identified
• Act as operational lead for the Cyber Compliance Team, coordinating priorities and outputs
• Streamline NIS and compliance processes, improving consistency and efficiency
• Maintain and improve compliance guidance, artefacts, and evidence repositories (eg SharePoint)
• Support automation of compliance workflows (eg Power Automate)
• Support onboarding and oversight of junior compliance team members
• Contribute to NIS reporting and risk prioritisation, including management dashboards

• Strong experience in cyber compliance, assurance, or GRC roles
• Proven knowledge of NIS Regulations and their practical application
• Experience reviewing and challenging compliance evidence in regulated environments
• Solid understanding of ISO/IEC 27001 and related control frameworks
• Ability to communicate and enforce compliance expectations with senior stakeholders
• Background in national security, law enforcement, or similarly regulated sectors