Senior Consultant
NCC Group
Role: Senior Consultant
Location: Remote
Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group.
We are on a mission to make society a safer and more secure place. Our people are the ones who make that possible; a global community of talented individuals working together towards a safer future.
We aim to create an environment where everyone can reach their full potential. We work together, we are brilliantly creative, we embrace difference and we want you to join in our mission, to make the world safer and more secure.
Take a look at our website here to learn more about why we’re one of the leading global Cyber Security and Risk Mitigation business…
The Opportunity:
NCC Group provides Information Assurance consultancy to help businesses protect critical systems and information. We do this by defining security strategies, developing policies, conducting security maturity and risk assessments, architecture reviews and by delivering security awareness & training. We also provide security staff augmentation to businesses to provide an on-demand cyber expert in the short, medium or long term to solve pressing business cyber orientated problems and challenges.
Our core services include:
Strategy and governance
On-demand augmentation roles
Data discovery and mapping
Risk advisory and assurance
Business resilience
Data privacy and GDPR
ISO 27001 assessments
Supply chain assurance
PCI, PIN, and 3DSIncident response readiness and planning
Card production audits
Cyber maturity assessments
Incident response planning
Gold/Silver/Bronze tabletops
Alongside our core services, we have a range of bespoke services to help organisations protect their systems and information:
Risk mitigation assessments
Security architecture review
Security awareness and Training programmes
Security policy development and adoption
Cyber transformation programmes
We have a fantastic new opportunity to join our UK Consulting and Implementation division for a Senior Consultant. The ideal candidate will have prior consulting experience and commercial exposure within the cyber and assurance field, gained from delivering a diverse range of cyber and assurance services ideally across a broad client base. In addition to your technical skills, you will have strong client facing skills and be comfortable dealing with senior client stakeholders.
Key Accountabilities:
Build and maintain sustainable trusted client relationships through high-quality delivery, ensuring output exceeds client expectations.
Conduct onsite and remote activities to advise, assess, analyse, and report in line with the engagement and client business requirements. This will involve meeting client stakeholders, conduct of documentation reviews, auditing technical solutions and systems as well as presenting information and advice to senior business partners.
Translate the technical and non-technical findings from an assessment or exercise into relevant, actionable remediation road maps for customers.
Responsible for adhering to all internal policy and procedures in relation to security and quality best practice.
Engage with Markets and Pre-Sales teams during the sales cycle to assist in quantifying, pricing and assessing the capability required for the project delivery.
Assist with sales proposals, bids and tenders for delivery of Assurance & Compliance services.
You will act as mentor to less experienced consultants and foster knowledge sharing throughout the delivery team.
Minimum Requirements:
You will have working knowledge of core control frameworks, such as, NIST, SANS Top 20 CSC, ISO 27001, Privacy, NIS and CAF.
Have experience of delivering risk assessments using common risk methodologies like ISO 27005, IRAM and FAIR.
Have experience of common compliance standards such as PCI DSS.
You are diligent and time conscious to deliver projects on time and in budget, and to a high level of customer satisfaction – exercising customer care at all times.
Demonstrate a strong ability to develop a rapport with customers and to engender long lasting trusted relationships.
Have strong business, consultancy and technical skills within the Cyber Security Industry.
Excellent communication, consulting soft skills and presentation skills.
Desired Skills and Qualifications
Demonstrable capability and qualifications across multiple of the following technical areas is advantageous.
SOC / SIEM assessments and tooling
Identity and Zero trust
Security design and architecture
GovAssure
Operational Technology (OT)
ISA 62443
Artificial Intelligence
SWIFT CSP
Cloud related certifications across AWS/GCP/Azure
CISM / CISSP / CRISC / ISO 27001 LI/LA / CISA
Behaviours:
Client-Focused: Prioritizes client needs and expectations, ensuring that all actions and decisions lead to client satisfaction and success.
Collaborates as ‘One NCC’: Works in unison with all departments and teams, fostering a united front and shared objectives across the entire organisation.
Adds Value: Goes beyond the minimum requirements to provide solutions and contributions that enhance the customer’s success and growth.
Enables and Empowers: Provides tools, resources, and support to team members, fostering an environment where they can thrive and excel.
Personal Responsibility: Takes ownership of actions, decisions, and outcomes, acknowledging successes as well as areas for improvement.
Communicates Openly and Respectfully: Shares information transparently while maintaining
respect and consideration for all stakeholders.
Open Mindset: Embraces new ideas, diverse perspectives, and is willing to adapt in response to evolving situations or feedback.
Growth and Development: Actively seeks opportunities for personal and professional growth, championing learning and evolution for oneself and the organisation.
Analytical Thinking: Demonstrates a systematic approach to resolving issues and
About NCC Group
The NCC Group family has over 2,200 members located all around the world, providing a trusted advisory service to 15,000 customers. Born in the UK, we have now have offices in North America, Canada, Europe, Asia- Pacific and United Arab Emirates.
We are passionate about helping our customers to protect their brand, value and reputation against the ever-evolving threat landscape. We fuel that passion with investment in our people and our business.
Our values and code of ethics are at the heart of how we operate – we work together, we are brilliantly creative and we embrace difference. We treat everyone and everything with equal respect.
We want to create an environment where all colleagues feel psychologically, emotionally and physically safe to be authentic, sharing their personal experiences to represent the diversity of the world they live in, and have equal opportunity to achieve their best.
About your application
We review every application received and will get in touch if your skills and experience match what we’re looking for. If you don’t hear back from us within 10 days, please don’t be too disappointed – we may keep your CV on our database for any future vacancies and we would encourage you to keep an eye on our career opportunities as there may be other suitable roles.
If you do not want us to retain your details, please email global.ta@nccgroup.com. All personal data is held in accordance with the NCC Group Privacy Policy. We are committed to diversity and flexibility in the workplace. If you require any reasonable adjustments to support you during the application process, please tell us at any stage.
Please note that this role involves mandatory pre-employment background checks due to the nature of the work NCC Group does. To apply, you must be willing and able to undergo the vetting process. This role being advertised will be subject to BS7858 screening as a mandatory requirement.