Lead Cyber Security Consultant

Join Cyberfort – Lead / Senior Cyber Security Consultant (Defence)

Location: Remote with willingness to travel (c.60% travel / 3 days on site)

Department: Consultancy

Contract Type: Permanent, Full-time

Salary: Competitive + Benefits

About Cyberfort

At Cyberfort, we’re securing the digital future. As a leading UK provider of cybersecurity solutions, we deliver cutting‑edge services in Managed Detection & Response (MDR), Penetration Testing, Security Operations, and Strategic Consulting.

We’re large enough to offer exciting opportunities, yet agile enough to ensure every voice is heard. At Cyberfort, you’re not just joining a company, you’re becoming part of a mission‑driven team.

Why Join Us?

• Purpose‑Driven Work – Help protect businesses and communities from evolving cyber threats.
• Growth & Development – Access mentoring, apprenticeships, graduate schemes, and continuous learning platforms.
• Inclusive Culture – We champion diversity through our Women’s Network, Neurodiversity Awareness, and Inclusion Committee.
• Flexible Working – Hybrid and remote options to support work‑life balance.
• Top‑Tier Benefits – Competitive salary, private healthcare, wellbeing support, generous holiday allowance, and more.

About the Role: Lead / Senior Cyber Security Consultant (Defence)

As a Senior Cyber Security Consultant, you will lead multiple client engagements and deliver strategic advisory and hands‑on implementation of information security governance, risk management, and compliance.

Playing a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You’ll collaborate with Senior Stakeholders and multi‑disciplinary teams to define and implement security risk assessments and best practice solutions, ensuring alignment with business risk appetites and transformation goals.

You’ll be part of a knowledge‑sharing culture, working alongside expert peers in Secure Architecture and Risk Planning. This role supports the next phase of Cyberfort’s growth and contributes to our mission of enabling clients to make proportionate, risk‑informed decisions.

Key Responsibilities

• Lead Secure by Design risk and security assurance functions within MOD/Public Sector.
• Lead and advise on risk management frameworks, ISMS, and Enterprise Security Risk Management.
• Facilitate security and risk workshops with Authority departments.
• Produce clear reporting on vulnerabilities, risks, controls, and treatment activities.
• Provide pragmatic remediation and risk management guidance.
• Support secure design across technology platforms including cloud infrastructures.
• Contribute to blogs and research within the Cyberfort community.

What We’re Looking For

We’re seeking a seasoned security professional with strong technical expertise and proven leadership experience across the Defence and MOD landscape. You’ll ideally bring a blend of architectural insight, risk management capability, and the ability to influence stakeholders at all levels.

Expertise

Technical & Security Leadership:

Demonstrated experience in Technical/Security Architecture or Governance, Risk & Compliance within Defence or MOD environments.

Collaboration & Communication:

Strong analytical skills with the ability to communicate complex concepts clearly. A team‑oriented mindset and a passion for continual learning in cybersecurity.

Desirable Skills & Knowledge

• Experience in Security Assurance Coordinator (SAC) roles or as a Delivery Team Security Lead
• Understanding of MOD/GDS Secure by Design principles
• Working knowledge of:
  • JSP440, JSP604/453, JSP490
  • Supplier Chain Assurance
  • Security legislation: GDPR, PCI DSS, ICO requirements
  • Security frameworks: ISO 27001, NIST CSF, CIS Controls v8
• Proficiency in:
  • Threat modelling techniques (kill chain, attack trees, etc.)
  • Cloud security (AWS, Azure), containerisation, and firewall technologies
  • Secure SDLC processes
  • Reviewing HLD/LLD documentation
  • ITHC scoping, coordination, and remediation
• Awareness of AI security standards (ISO 42001 desirable)

Certifications

CIISEC, or UK Cyber Security Council Registration (Chartered or Principal)

AWS/Azure Security (Professional level), CCSP, CISSP, CISM, ISO27001 Lead Audit

Clearance

Must hold an active and transferable DV – Developed Vetting security clearance

Must be a sole British National

Inclusive Hiring

We understand that one size doesn’t fit all. If you need adjustments during the recruitment process, we’re here to support you. Cyberfort is proud to be a Disability Confident Employer, a CyberFirst partner, and a signatory of the Armed Forces Covenant.

#J-18808-Ljbffr