Information Assurace Consultant

Information Assurance Consultant

Career Level:

Consultant

Location:

Nationwide – London, Cheltenham, Manchester, Edinburgh, Bristol

Please Note:
Due to the nature of client work you will be undertaking, you will need to be willing to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application.

You will be responsible for delivering security assurance and Secure by Design outcomes across complex UK Government, Defence, and Government Supply Chain programmes. You will operate autonomously, manage defined work streams, engage directly with clients, and provide clear, risk‑based security advice.

• Support clients in complex security landscapes to shape and deliver Security Information Assurance, Secure by Design, and Security Strategy activities.
• Facilitate and manage stakeholder engagements across multi‑functional teams and senior stakeholders.
• Build trusted relationships with clients to ensure requirements and outcomes are met.
• Engage with clients to understand their security challenges and identify how to drive their security strategy.
• Drive strategic implementation of security, including compliance, information assurance and Secure by Design measures.
• Provide expert security compliance advice, governance, and risk mitigation to technical and non‑technical teams.
• Become a Subject Matter Expert, creating deliverables such as threat assessments and security policies.
• Lead and mentor analysts, reviewing work and supporting development.
• Contribute to internal Secure by Design activity, developing new assets and methods.
• Support business development, including bids and proposals.

• Strong understanding of secure system lifecycle principles and risk‑based assurance, familiar with NIST, NCSC guidance, HMG policy such as GOVS 007 and Secure by Design, and recognised security standards for Cloud Security.
• Strong stakeholder management skills, able to explain security risks clearly.
• Excellent verbal and written communication skills; experience presenting to diverse audiences.
• Project delivery capabilities, able to work independently and prioritize effectively.
• Industry experience within Public Sector, Critical National Infrastructure and/or HMG Supply Chain Security.
• Demonstrable experience delivering information assurance, cyber security or Secure by Design activities in complex environments.

• Exposure to assurance and compliance activities in regulated environments.

• Relevant qualifications such as CISSP, CISM or similar.
• Experience providing security compliance expertise to cloud‑based solutions.
• Experience in Information Assurance / Secure by Design delivery.
• Progress towards or holding relevant security certifications (ISO 27001, CISSP, CISM, etc).

Competitive basic salary and extensive benefits package including 30 days’ vacation per year, private medical insurance and 3 extra days leave per year for charitable work.

Required to spend time onsite with clients and partners to deliver services.

We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, sexual orientation, gender identity or expression, marital status, citizenship status or any other basis as protected by applicable law. Our rich diversity makes us more innovative, competitive, and creative, helping us serve clients and communities better.

Closing Date for Applications: 31/08/2023