Principal Consultant - Cybersecurity Strategy & Risk

CyberCX is expanding our Strategy & Risk (S&R) practice in London and we are seeking a highly skilled cyber security leader to drive complex, large-scale engagements across the UK market.

Reporting to the Director of Strategy & Risk, the Principal Consultant will lead key cybersecurity engagements aligned to our S&R service offerings. This is a senior role for someone who combines deep technical expertise with strategic influence and a passion for delivering pragmatic, real-world cyber outcomes.

The Opportunity

You will be responsible for managing and delivering complex information security consultancy projects while acting as a trusted technical advisor to both customers and colleagues.

This role involves:

• Leading highly complex and sizeable cyber security projects aligned with the S&R service catalogue
• Shaping technical security solutions for clients, providing expertise in technical architecture and broader cybersecurity domains
• Leveraging extensive Information & Cybersecurity knowledge to deliver strategic technical direction that drives pragmatic client outcomes
• Ensuring solutions are secure, resilient, scalable and fit-for-purpose
• Implementing Information and Cybersecurity outcomes across a diverse portfolio of S&R project offerings
• Advising clients across cyber transformation, security strategy, governance, operating model, risk & compliance, maturity assessments, resilience and architecture
• Conducting threat modelling, impact analysis, architecture and assurance reviews, defining appropriate remediation actions
• Supporting implementation of cybersecurity controls
• Preparing high-quality executive reports with clear recommendations
• Contributing to proposals, pre-sales activity and business growth initiatives
• Mentoring consultants and providing subject matter expertise across CyberCX

You will also collaborate closely with Sales and Solutions teams to understand client business drivers and shape meaningful, outcome-focused engagements.

About You

You are an experienced cyber security consultant with a strong track record of delivering impactful outcomes in client-facing environments.

You will bring:

• 10+ years’ experience across diverse Information / Cybersecurity projects
• Experience within a consulting firm or large technology environment
• Deep expertise across multiple cyber security domains
• Strong understanding of frameworks such as ISO 27001, NIST, CAF, CIS, Cyber Essentials+, SOC 2
• At least one major certification (CISSP, CISM, CISA, ISO Lead Auditor/Implementer)
• Exceptional stakeholder engagement skills and executive presence
• Strong analytical and problem-solving capability
• A collaborative mindset with the ability to mentor and influence
• Eligibility and willingness to obtain UK security clearance

You are professional, ethical, emotionally intelligent and comfortable operating in complex, unfamiliar environments. You combine strategic thinking with practical delivery and have a genuine passion for building resilient organisations.

Why CyberCX?

CyberCX brings together over 1,400 cyber security professionals across the United Kingdom, United States, Australia and New Zealand. We are trusted by public and private sector organisations to manage cyber risk, respond to incidents and build long-term resilience.

If you are ready to play a key role in positioning CyberCX as the United Kingdom’s leading force in cyber security consulting, we would welcome a confidential conversation.

Apply directly or reach out to discuss further.