Description
The role
We are seeking an experienced cybersecurity professional to manage high-impact client engagements and drive strategic security outcomes. As a Senior Consultant or Manager, you will lead multidisciplinary teams, advise C-suite stakeholders, and oversee the design and implementation of cybersecurity strategies and transformation programs.
You will combine deep technical understanding with strong leadership and communication skills to help our clients strengthen resilience, achieve compliance, and adopt proactive security postures.
Key Responsibilities
For all levels:
1. Lead end-to-end cybersecurity maturity assessments using frameworks and standards such as NIST CSF, NIST 800-53, ISO/IEC 27001, ISA 62443, or CIS controls measured against DORA, NIS2, CRA, PCI-DSS and new revisions to regulations and directives Act as a trusted advisor to senior stakeholders on topics such as cloud security, zero trust, threat management, incident preparedness, and regulatory compliance.
2. Evaluate risks associated with third-parties and criticality of provisioned services in the context of cybersecurity.
3. Conduct detailed interviews, workshops, and document reviews to evaluate cybersecurity practices
4. Develop clear, data-driven insights and recommendations tailored to client risk appetites and business goals
5. Create strategic roadmaps to improve cybersecurity maturity, compliance, and governance
6. Collaborate with client leadership teams to embed cyber risk considerations into decision-making
7. Support business development efforts, including proposal writing and client presentations
8. Mentor consultants and contribute to internal methodology development
Skills & Experience
9. Bachelor's or Master's degree in Cybersecurity, Information Systems, or a related discipline.
10. Minimum 3+ years (5+ for manager) years of experience in cybersecurity consulting, enterprise security, or risk management leadership.
11. Strong understanding of key cybersecurity domains, including:
12. Governance, Risk & Compliance (GRC)
13. Cloud security and zero trust architectures
14. Identity and Access Management (IAM)
15. Data protection and privacy
16. Threat management and incident response
17. Familiarity with frameworks and standards such as NIST, ISO/IEC 27001, ISA 62443, CIS Controls, MITRE ATT&CK, and PCI-DSS.
18. Strong knowledge of regulatory frameworks including NIS2, DORA, CRA, and GDPR.
19. Professional certifications such as CISSP, CISM, CRISC, or ISO 27001 Lead Implementor/Auditor.
20. Experience performing assessments across multiple industries such as finance, healthcare, telecommunications or energy
Desired Skills
21. Experience delivering large-scale transformation programs or regulatory-driven security initiatives.
22. Exposure to security operations, SOC optimisation, or incident response.
23. Ability to translate complex technical risks into clear, actionable insights for senior and executive audiences.
24. Experience with GRC platforms such as Archer, OneTrust, or ServiceNow.
25. Strong presentation and influencing skills, with the ability to build long-term client relationships.
#LI-RM1