Cyber Security Consultant

Redbay Ltd
Portsmouth, United Kingdom
5 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate
Compensation
£ 56K

Job location

Remote
Portsmouth, United Kingdom

Tech stack

Computer Security
Cyber Threat Analysis

Job description

We're looking for a Cyber Security Consultant with a focus on MOD Secure by Design (SbD). You'll be working with client organisations in the defence space, assessing how effectively MOD SbD principles are being applied and helping them improve their implementation.

The role has two sides. You'll be assessing whether security is being built into systems and processes appropriately, identifying where SbD principles aren't being followed and providing clear, evidence-based findings. Alongside that, you'll be rolling up your sleeves and helping the organisation get it right: supporting teams as they put SbD into practice, guiding them through the practicalities, and helping them move from assessment findings to real improvement.

Redbay is a small cyber security consultancy, we respect our people, value their contribution, and give them space to do meaningful work. If you want to be somewhere your expertise matters, this is that kind of role.

What you'll be doing

Much of your time will be spent working directly with clients. Your responsibilities will include:

  • Assessing how effectively Secure by Design principles are being applied across programmes and systems, and providing clear findings and recommendations
  • Helping client teams put SbD into practice, working alongside programme and project staff to build security in from the outset rather than retrofitting it later
  • Reviewing system designs, architectures, and change proposals to assess whether security has been appropriately considered, and advising on how to address gaps
  • Assessing risk ownership and escalation practices, and helping stakeholders understand where accountability is unclear or risks are not being appropriately managed
  • Producing well-evidenced assessment reports, security cases, and assurance artefacts
  • Supporting the development of practical SbD guidance, processes, and tooling that client teams can use day-to-day
  • Communicating findings clearly to both technical and non-technical stakeholders, making sure project leads, architects, and senior decision-makers understand what's been found and what action is needed
  • Supporting broader cyber security assurance activity, including assessment against frameworks such as the CAF
  • Building trusted working relationships within client organisations so that both assessment and implementation support are seen as constructive and credible

On the Redbay side, you'll contribute to proposal writing, support business development activity, and help develop our SbD service offerings., * Integrity: We uphold the highest standards of professionalism, ethics, and expertise in everything we do.

  • Creativity: We embrace innovation and develop dynamic, novel solutions to complex challenges, leveraging our deep sector expertise.
  • Empowerment: We trust and empower our people to lead their work and make informed decisions, providing clear guidance and support to maximise client benefit.

Requirements

  • Understanding of MOD Secure by Design principles and how they apply across the defence acquisition and system lifecycle
  • Practical experience in cyber security risk assessment, security architecture review, or security assurance, 2-3 years' experience
  • Ability to communicate security concepts clearly to both technical and non-technical stakeholders, in writing and in person
  • Comfortable working within client organisations, building relationships and influencing without direct authority
  • SC Clearable (must have lived in the UK for the last 5 years with no more than 30 consecutive days spent outside the UK)
  • UK work authorisation
  • Driving licence and access to a car (client site travel required)

Desirable:

  • Experience working in defence or public sector cyber security environments
  • Experience applying MOD SbD principles within defence programmes or projects, either as an assessor or in a hands-on security role
  • Familiarity with the Cyber Assessment Framework (CAF) and how it applies in a defence or government context
  • Familiarity with NCSC guidance, GovAssure, and related frameworks
  • CISMP, CCP, or equivalent professional certification (or working towards CISSP, CISM, or similar)
  • Cyber security related degree or equivalent professional training
  • Experience supporting or contributing to security cases or accreditation activity, * Due to the nature of our clients' work, this role requires eligibility to obtain Security Check (SC) clearance.
  • You must be able to demonstrate the right to work in the UK.
  • Fluent English verbal and written communication skills are essential.
  • Ability and willingness to travel to client sites at least two days per week., * Cyber Risk Management : 2 years (preferred)

Benefits & conditions

  • Company pension
  • Private Healthcare or Gym membership
  • Work from home (hybrid)
  • Monday to Friday schedule, We are dedicated to fostering an inclusive and diverse workplace where every employee feels respected, valued, and empowered to succeed. We welcome applications from candidates of all backgrounds and are committed to eliminating discrimination in all its forms.

If you are eager to advance your cyber security career in a dynamic, collaborative, and supportive environment, we would love to hear from you!

Job Types: Full-time, Permanent

Pay: £42,000.00-£56,000.00 per year

Benefits:

  • Company events
  • Company pension
  • Gym membership
  • Private medical insurance
  • Work from home

Apply for this position