Cyber Security Lead

Cyber Security Lead

Location: Knowsley, Liverpool – (Hybrid, with occasional client visits)
Salary: £50K - £60K per annum + Excellent Benefits!
Employment Type: Full-time, Permanent

About Curveball Solutions

At Curveball Solutions, we’re proud to be more than an IT provider we strive to become an extension of your business: a trusted partner. From our early days in 1998 as a mobile services start-up, we’ve grown into a full-service MSP offering cloud, communications, cybersecurity, and IT support always with a tailored approach, unwavering reliability, and exceptional customer service at our core.

Our values centre on customer-centricity, innovation, transparency, and trust. We actively prevent security risks and deliver solutions designed for each client’s unique challenges never “one size fits all”.

We’re seeking a passionate Cyber Security Lead to shape, elevate, and deliver Curveball’s cybersecurity offering. You’ll be the cornerstone of our proactive protection and compliance framework driving strategy, policy, and client-focused solutions.

Your Mission in a Nutshell: Build security strategy, negotiate with clients, drive policy and compliance, manage M365 security, run workshops, produce tender responses, and elevate our cyber posture across all MSP services.

In addition to this, as our Cyber Security Lead you will be responsible for:

Review and refine the initial baseline cybersecurity framework already in development by the Curveball team. Build on this foundation to formalise a scalable standard aligned to Curveball’s four IT support verticals: End User Compute, Infrastructure, Cyber Security, and Unified Communications. This framework will form part of the standard IT support offering, ensuring all customers benefit from foundational security controls.

Develop optional upgrade paths for customers seeking formal certification or enhanced assurance—such as Cyber Essentials, Cyber Essentials Plus, or ISO 27001—using the same framework as a foundation.

Conduct a gap analysis of Curveball’s current product and service portfolio to identify areas requiring enhancement to meet these standards. Collaborate with internal leadership and external partners to address any gaps and ensure the offering remains robust, scalable, and competitive.

Leverage partner software platforms to assess and score customer alignment to the baseline and optional standards. Use these scores to support customer onboarding, reviews, reporting, and to enhance sales conversations by clearly demonstrating security posture and improvement opportunities.

Champion cybersecurity best practices internally, ensuring Curveball’s own systems and operations align with the baseline framework and optional standards offered to customers. Act as a role model for secure behaviours and help embed a security-first culture across the business.

As our Cyber Security Lead you will be responsible for:

• Serve as a trusted advisor to clients—running workshops and guiding warm-lead negotiations toward tailored security solutions.
• Develop and execute IT security strategies that align with evolving business objectives.
• Draft, maintain, and implement information security policies and Standard Operating Procedures (SOPs).
• Configure and oversee mobile security—MDM (MAM/BYOD)—to protect business continuity.
• Lead vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts.
• Author compelling tender responses, clearly demonstrating technical capability and strategic value.
• Enhance Microsoft 365 security—leveraging Purview, Conditional Access, MFA—to safeguard modern workplaces.
• Ensure compliance with GDPR (DPA 2018), Cyber Essentials (Basic & Plus), and ISO 27001, supported by frameworks like NCSC and NIST.
• Operate around cybersecurity fundamentals: CIA (Confidentiality, Integrity, Availability), proactive threat prevention, and rapid incident response

About You

You’re naturally aligned with MSP-style work, deeply familiar with security frameworks, and thrive at the intersection of strategy and execution.

In addition to this, you must have experience in / exposure to:

• Background in MSP/MSSP environments.
• Proven history of facilitating workshops and supporting sales from warm leads through closure.
• Strong understanding of ITIL, CAB, and structured change management.
• Skilled in crafting and updating security policies, SOPs, and managing tender documentation.
• Hands-on expertise with MDM tools, penetration testing, and policy-based firewalls.
• Experience designing and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001.
• Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional Access, MFA.
• Fluent in cybersecurity frameworks (CIA, NCSC, NIST) and modern threat prevention approaches.

Why Curveball

• Make a real impact: You’ll lead the cybersecurity footprint across clients and services.
• True partnership: We treat clients like collaborators, not just transactions.
• Innovation-driven: We anticipate threats and empower businesses to stay ahead.
• Growth opportunity: Join a 25-year-strong, community-rooted MSP that’s continuously expanding.
• Outstanding service culture: Backed by exceptional client satisfaction and real-world reviews.

If you feel you have the necessary skills and experience to be successful in this role click on “APPLY” today!

No agencies please.