Cyber Security Consultant

Cyber Security Consultant x 2

Job Description

This role involves working as a Cyber Security Consultant within the security architecture and engineering team and acting as a conduit between security and business, ensuring security considerations are integrated early in the project life cycle to avoid acting as a blocker later. The position offers a chance to influence enterprise-wide initiatives, bridging security architecture, engineering, and business operations. The role itself will require you to be on site 2-3 days per week in the city centre Edinburgh office.

Responsibilities

• Conduct security assessments and risk analyses across infrastructure, applications, and third-party services.
• Design and implement security controls, policies, and procedures to mitigate identified risks.
• Provide expert guidance on regulatory compliance, including frameworks such as NIST CSF, PCI-DSS.
• Support incident response efforts and post-incident reviews.
• Act as a liaison between technical security teams and business units to gather, clarify, and translate security requirements.
• Facilitate workshops and interviews with stakeholders to understand business processes, pain points, and risk priorities.
• Document and communicate business and functional requirements for security initiatives.
• Ensure that security solutions are fit-for-purpose and support business continuity and operational efficiency.
• Contribute to business cases and impact assessments for security-related projects.

Essential Skills

• Proven experience in cyber security consulting or senior engineering roles.
• Strong understanding of security frameworks and standards such as ISO27001, NIST, CIS.
• Demonstrated experience in business analysis, stakeholder engagement, and requirements gathering.
• Familiarity with cloud security (Azure, AWS), network security, and secure software development practices.
• Excellent communication skills, with the ability to translate complex technical concepts into business-friendly language.
• 5+ years' experience working in regulated industries such as finance, healthcare, government would be ideal.

Additional Skills & Qualifications

• Certifications such as CISSP, CISM, CEH, OSCP, or CBAP are desirable.

Why Work Here?

This role provides a strategic opportunity to work at the intersection of security and business transformation, influencing enterprise-wide initiatives. Employees benefit from a collaborative work environment where innovation is encouraged, alongside a competitive compensation package, including pension contributions and performance bonuses.

Edinburgh, UK

.00 GBP Yearly

Trading as TEKsystems. Allegis Group Limited, Bracknell, RG12 1RT, United Kingdom. No Allegis Group Limited operates as an Employment Business and Employment Agency as set out in the Conduct of Employment Agencies and Employment Businesses Regulations 2003. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, Talentis Solutions, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at our website.

To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go our website.

We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice on our website for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.