Cyber Security Consultant

Job Ref :- 842 | Cyber Security Consultant ( On Prem | Azure | GCP Hybrid | Outside IR35) Apply via LinkedIn or Email CV mentioning Job Ref in Subject :- HR@AGITCONSULTANCY.CO.UK

About the Role

We’re looking out for Cyber security consultant , where you’ll be part of a cross-functional security engineering team working alongside cyber specialists and platform engineers across the organization. This is a hands-on engineering role where you’ll contribute to designing, building, and improving security controls that protect critical digital services. You’ll help ensure our layer 6 and 7 defenses stay ahead of emerging threats, while also supporting incident response efforts to strengthen our future resilience. Influencing architectural decisions, and ensuring risks are understood, managed, and reduced. A key part of the role will involve driving automation and infrastructure-as-code practices (including Terraform) to modernize how we deploy and manage security solutions across cloud platforms such as Akamai, Google Cloud, and Microsoft Azure.

Key Responsibilities

• Security Architecture & Advisory
• Conduct threat modelling exercises (e.g., STRIDE, MITRE ATT&CK) to identify risks and vulnerabilities.
• Assess architectural designs, balancing risk, business value, and technical feasibility.
• Define and document security controls aligned to enterprise security standards.
• Provide governance, assurance, and security direction across multiple initiatives.
• Translate complex security concepts clearly for both technical and non-technical stakeholders.
• Engineering & Delivery
• Support agile delivery teams across concurrent product initiatives.
• Define security testing requirements and assess remediation of findings.
• Contribute to the design and implementation of secure cloud and digital solutions.
• Help embed automation and Infrastructure as Code (including Terraform) into security controls.
• Digital Edge & Cyber Defence
• Contribute to DDoS protection, bot mitigation, DNS security, vulnerability management, and threat intelligence.
• Support layer 6 & 7 defensive capabilities to stay ahead of evolving threats.
• Participate in incident analysis to strengthen long-term defensive posture.
• Work across public and private cloud platforms (e.g., Azure, GCP) to deliver secure configurations and cloud-native protection.

What We’re Looking For

We value diverse thinking and practical problem-solvers who are passionate about cyber defence. To be considered, you should demonstrate:

• A solid background in cyber security with a genuine interest in staying ahead of emerging threats
• Strong understanding of DDoS, bot mitigation, and DNS protection technologies
• Good knowledge of networking fundamentals (routing, switching, IP, network protocols, firewalls, WAF) and how security controls operate across layers
• Experience working collaboratively with internal teams and stakeholders
• Confidence in taking ownership and resolving technical challenges
• Proven experience in cyber security within enterprise environments.
• Broad understanding of security domains including:
• Network security (routing, switching, IP protocols, firewalls, WAF)
• Endpoint security
• Identity & Access Management (IAM)
• Cryptography
• Cloud security
• Experience with modern architectures such as RESTful APIs and containerised microservices.
• Strong understanding of DDoS, bot, and DNS protection mechanisms.
• Ability to analyse risk, challenge designs constructively, and influence secure outcomes.
• Comfortable working under pressure and managing competing priorities.
• Strong stakeholder engagement and communication skills.

Nice to Have

• Familiarity with security frameworks and standards such as ISO 27001, NIST, OWASP, PCI DSS, or COBIT.
• Security certifications (CISSP, CISM, CCSP, CEH, OSCP or equivalent).
• Experience with cloud security across Azure, GCP, or hybrid environments.
• Experience with Infrastructure as Code, particularly Terraform
• Automation and scripting skills (e.g., Python).
• Exposure to CDN/WAF platforms and cloud-native security tooling.
• Automation and scripting experience (Python or similar)
• Understanding of encryption, virtualisation, and containerisation technologies