×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Senior Information Governance & Security Consultant

Job in Birmingham, West Midlands, B1, England, UK
Listing for: Civica
Full Time position
Listed on 2026-06-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 GBP Yearly GBP 80000.00 100000.00 YEAR
Job Description & How to Apply Below

Description

We’re Civica and we make software that helps deliver critical services for citizens all around the world. From local to state government, to education, to health and care, over 5,000 public bodies across the globe use our software to help provide critical services to over 100 million citizens.

Our aspiration is to be a Gov Tech champion everywhere we work around the globe, supporting the needs of citizens and those that serve them every day. Building on 21 years of continuous growth and success, we're at a pivotal point on our journey to realise that aspiration.

Why you’ll love this role of Senior Information Governance Security Consultant

This is a high-impact, client-facing role where you will help organisations strengthen their information governance and cyber security posture. You’ll work across a variety of public and private sector clients, delivering consultancy that directly improves resilience, compliance, and risk management.

You’ll have the opportunity to lead meaningful security engagements, from gap analysis and risk assessments to certification support and security improvement programmes. This role offers a strong mix of autonomy, variety, and influence—ideal for someone who enjoys solving complex security challenges and driving best practice.

If you are passionate about governance, risk, and compliance, and enjoy working closely with clients to deliver real-world impact, this role gives you the platform to do exactly that.

This role can be performed predominantly from home, with occasional travel to offices.

  • Deliver Information Governance (IG) and Information Security (IS) consultancy services to clients
  • Conduct gap analysis, risk assessments, and risk treatment planning
  • Assess organisations against standards such as Cyber Essentials, Cyber Essentials Plus, and ISO 27001
  • Support clients through certification processes and security improvement programmes
  • Perform audits to ensure effectiveness of security controls
  • Produce high-quality security reports and present findings to stakeholders
  • Provide continuous assessment of client security practices and recommend improvements
  • Contribute to the development and enhancement of IG and cyber security service offerings
  • Deliver consultancy across recognised frameworks such as the NCSC Cyber Assessment Framework (CAF)
  • Develop and review security policies, procedures, and controls
  • Deliver security awareness training, workshops, and exercises
  • Collaborate with internal teams and support pre/post sales activities
  • Mentor colleagues and contribute to team knowledge sharing
  • Maintain strong client relationships and stakeholder communication

Experience & Skills

  • Strong experience in IT Governance, Risk & Compliance (GRC) across cloud and on-premise environments
  • Knowledge of security and data protection frameworks including ISO 27001, Cyber Essentials Plus, and GDPR
  • Experience applying risk management principles and methodologies
  • In-depth understanding of Cyber Essentials and NCSC CAF
  • Ability to advise on security strategy and risk mitigation
  • Strong knowledge of information security principles and technical controls
  • Proven experience in client-facing roles
  • Excellent communication skills, with the ability to engage stakeholders at all levels
  • Strong organisational skills with attention to detail
  • Ability to work independently with minimal supervision

Nice to have:

  • Experience implementing and auditing ISMS aligned to ISO 27001
  • Relevant certifications such as CISSP, CISM, CISA, or CEH
  • Experience working with frameworks such as DTAC, DSPT, CAF, or PSN
  • Experience delivering security awareness programmes
  • Experience in third-party assurance activities
  • Ability to communicate complex security risks to both technical and non-technical audiences, including C-level stakeholders
  • Strong presentation and reporting skills
  • Experience working with Local Government

We Want You to Bring Your Whole Self to Work
There is no such thing as the perfect candidate, so if you think you have what it takes but don't necessarily meet every single point on the list above, please still get in touch. We'd love to have a chat and see if you could be a great fit.

Why You'll Love Working with Us
As a company, we're…

Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search