Senior Security Consultant

Position Overview

The Cyber Security Consultant within the Managed Services team is responsible for acting as a trusted advisor to clients across all cyber security services. The role provides end‑to‑end engagement ownership for cyber security matters, often serving as the primary point of contact for clients consuming managed cyber services, cyber resource augmentation, or virtual CISO (vCISO) offerings.

The role ensures that cyber security services are delivered consistently, pragmatically, and in alignment with client risk, business objectives, and regulatory obligations. This includes translating complex security concepts into actionable guidance, coordinating internal cyber resources, and driving continuous improvement of clients’ security posture.

Salary & Benefits

Our salaries are competitive within the market

Click here for the list of benefits.

Hybrid working

We recognise the benefits that remote and flexible working brings.

We operate a hybrid working policy that allows our employees to balance time in the office and time from home. Each team within our organisation can decide how to implement this policy. If you have any questions after applying, please reach out to our recruitment team.

Responsibilities

• Act as the primary point of contact for managed services clients consuming cyber security services

• Provide consistent, high-quality cyber security advice aligned to client risk appetite and business objectives

• Coordinate internal cyber resources to ensure effective and timely service delivery

• Deliver cyber security oversight, guidance, and governance for clients under resource augmentation or vCISO engagements

• Develop and maintain strong client relationships, building trust and long-term engagement value

• Identify and communicate security risks, gaps, and improvement opportunities in a clear and pragmatic manner

• Support the development and execution of client cyber security roadmaps and improvement initiatives

• Contribute to service quality, standardisation, and continuous improvement within the Managed Services team

• Support incident response, escalations, and post-incident reviews where required

Experience

• Strong understanding of cyber security principles across governance, risk, compliance, and technical security domains

• Working knowledge of common cyber security frameworks and standards, such as:

(NIST Cyber Security Framework (CSF), ISO/IEC 27001/27002, CIS Critical Security Controls, Cyber Essentials)

• Understanding of risk management, threat landscapes, and security control effectiveness

• Ability to operate across multiple cyber service models, including:

(SOC / MDR services, Vulnerability Management, User Awareness & Training, Supply Chain Assurance, Threat Intelligence, Cyber advisory and consultancy, Resource augmentation, vCISO-style engagements)

• Strong stakeholder management skills, with the ability to engage both technical and non-technical audiences

• Ability to prioritise, manage competing demands, and operate effectively across multiple client engagements

• Excellent written and verbal communication skills, including report writing and executive-level presentations

• Commercial awareness, with the ability to identify opportunities for service improvement or expansion aligned to client needs

• Demonstrable experience in a cyber security consultancy, managed services, or in-house security role

• Experience acting as a primary cyber security contact for one or more organisations

• Experience delivering cyber security advisory services, assessments, or ongoing security oversight

• Experience working with senior client stakeholders, including executives and technology leaders

• Experience coordinating or working alongside technical security teams (e.g. SOC, IR, IAM, cloud, vulnerability management, CTI)

• Experience contributing to or leading cyber security roadmaps, maturity uplift initiatives, or compliance programs

• vCISO, security leadership, or security management experience is desirable

 Qualification

• Recognised cyber security or information security certification, such as:

• CISSP (Certified Information Systems Security Professional)

• CISM (Certified Information Security Manager)

• ISO/IEC 27001 Lead Implementer or Lead Auditor

• GIAC security certifications (e.g. GSEC, GCIH, GSLC)

• Relevant tertiary qualification in information security, computer science, information technology, or a related discipline or equivalent industry experience

 Desirable

• Certifications aligned to cyber governance, risk, and advisory services, such as:

• CRISC (Certified in Risk and Information Systems Control)

• NIST CSF or risk management–focused training

• Cloud security certifications (e.g. Azure, AWS, or Google Cloud security specialisations)

• Privacy or data protection qualifications (e.g. CIPP/E, CIPP/A, or equivalent)

 vCISO / Senior Advisory Engagements

• Certifications demonstrating senior security leadership and governance capability are highly regarded, including:

• CISSP, CISM, or equivalent senior-level credentials

• Board or executive cyber risk training

• Experience-based equivalency for candidates operating in vCISO or security leadership roles

About Us:
We are the tech company with people at heart.

At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services.

Our Selection Process:

We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law.

Please do let us know if you’ll need any reasonable adjustments as part of the selection process by highlighting these on your application form.

As part of our commitment to our clients we will need to carry out background checks, including a criminal record check, for all offers of employment. If you have any unspent criminal convictions or questions about the screening process, please notify your recruiter once the application has been submitted.

#LI-Hybrid