Cyber Security Consultant
Posted 1 day ago by Synergize Consulting Limited
Negotiable
Inside
Onsite
Reading (RG10)
Summary: The Cyber Security Consultant role involves providing independent assurance for applications, infrastructure, and cloud environments within a complex technology programme in a regulated environment. The consultant will ensure compliance with security standards and frameworks while collaborating with various teams to embed security throughout the software development lifecycle. Security clearance is essential for this position, which requires extensive experience in high-technology or regulated sectors. The role is based in Reading and requires on-site presence for 3-4 days a week.
Key Responsibilities:
- Provide independent assurance for applications, infrastructure, and cloud environments throughout the development and operational lifecycle
- Ensure alignment with Security by Design principles, frameworks, and organisational security policies
- Assess compliance against relevant standards and regulatory requirements, including ISO 44001, NIST 800-53, NIST 800-171, NIST 800-172, NIS2, DEFSTAN, JSPs, and other applicable frameworks
- Collaborate with development, engineering, and security teams to embed security requirements throughout the software development lifecycle
- Review technical designs and security controls to ensure critical data and systems are adequately protected
- Identify vulnerabilities and assure effective mitigation strategies in both development and production environments
- Identify, assess, and manage security risks, recommending tactical and strategic improvements where required
Key Skills:
- Extensive experience within a complex, high-technology or highly regulated environment such as defence, aerospace, government, critical infrastructure, or enterprise IT
- Strong knowledge and practical application of IT assurance frameworks and standards, including: ISO 144001, NIST 800-53, NIST 800-171, NIST 800-172, NIS2, DEFSTAN and JSPs
- Proven experience implementing and assuring Security by Design across the full technology lifecycle
- Experience working with cloud, infrastructure, and application security technologies
- Strong understanding of vulnerability management, security controls, and risk management practices
- Demonstrated ability to engage effectively with technical and non-technical stakeholders
- Excellent communication, influencing, and collaboration skills
- Experience working within large-scale transformation or complex technology programmes
- Relevant security certifications such as CISSP, CISM, CCSP, SABSA, ISO 27001 Lead Auditor/Implementer, or equivalent
- Occasional travel to company sites, suppliers or stakeholder locations may be required
Salary (Rate): £104 p/h
City: Reading
Country: United Kingdom
Working Arrangements: on-site
IR35 Status: inside IR35
Seniority Level: Mid-Level
Industry: IT
Contract Cyber Security Consultant
Reading HQ 3-4 days a week onsite
Security clearance is essential
Up to £104 p/h Inside IR35
We are seeking an experienced security cleared Cyber Security Consultant professional to play a key role in a large scale, complex technology programme operating within a highly regulated environment. This position is responsible for assuring the security, compliance, and resilience of applications, infrastructure, and cloud environments throughout their lifecycle, ensuring adherence to Security by Design principles and industry best practices
- Provide independent assurance for applications, infrastructure, and cloud environments throughout the development and operational lifecycle
- Ensure alignment with Security by Design principles, frameworks, and organisational security policies
- Assess compliance against relevant standards and regulatory requirements, including ISO 44001, NIST 800-53, NIST 800-171, NIST 800-172, NIS2, DEFSTAN, JSPs, and other applicable frameworks
- Collaborate with development, engineering, and security teams to embed security requirements throughout the software development lifecycl
- Review technical designs and security controls to ensure critical data and systems are adequately protected
- Identify vulnerabilities and assure effective mitigation strategies in both development and production environment
- Identify, assess, and manage security risks, recommending tactical and strategic improvements where required
Skills & Experience
- Extensive experience within a complex, high-technology or highly regulated environment such as defence, aerospace, government, critical infrastructure, or enterprise IT.
- Strong knowledge and practical application of IT assurance frameworks and standards, including: ISO 144001, NIST 800-53, NIST 800-171, NIST 800-172, NIS2, DEFSTAN and JPS.
- Proven experience implementing and assuring Security by Design across the full technology lifecycle.
- Experience working with cloud, infrastructure, and application security technologies
- Strong understanding of vulnerability management, security controls, and risk management practices
- Demonstrated ability to engage effectively with technical and non-technical stakeholders
- Excellent communication, influencing, and collaboration skills
- Experience working within large-scale transformation or complex technology programmes
- Relevant security certifications such as CISSP, CISM, CCSP, SABSA, ISO 27001 Lead Auditor/Implementer, or equivalent
- Occasional travel to company sites, suppliers or stakeholder locations may be required.