Cyber Security Consultant - UK Remote

Are you early in your cyber career but ready to step into a client-facing, people-focused role where you can put your incident response skills to work, develop your GRC knowledge, and learn how organisations really build and run their security programmes?

We're looking for a Cyber Security Consultant to join a growing UK consultancy. This role is ideal for someone with 1-3 years' experience and eager for a role with more variety, client interaction, and room to grow.

You'll work across a blend of short engagements and longer-term improvement programmes, helping clients strengthen their governance, risk, and operational security capabilities while receiving mentorship from experienced senior consultants.

The Role

• Supporting the delivery of multi-workstream security projects, helping guide clients through technology or process-related change.
• Contributing to practical improvement plans, security roadmaps, and recommendations aligned to client objectives.
• Assisting with governance activities, such as risk registers, action tracking, and workshop preparation.
• Helping coordinate compliance and assurance activities, working with frameworks like ISO27001, GDPR, and relevant operational controls.
• Conducting maturity assessments, gap analyses, and producing prioritised action plans.
• Supporting and sometimes facilitating workshops, discovery sessions, stakeholder interviews, and incident response tabletop exercises.
• Producing clear, high-quality reports, summaries, and client-ready deliverables under gentle guidance.
• Assisting with policy development, risk processes, audit readiness, and other structured management system tasks.
• Providing hands-on input across operational areas such as incident response, monitoring practices, third-party assurance, and cloud security basics.
• Translating technical concepts into clear, simple, business-focused language.

This is a role where you'll get proper guidance and mentorship, but you'll need to bring energy, curiosity, and the willingness to get stuck in.

• 1-3 years' experience in cyber security
• Experience in incident response, incident handling, or IR planning.
• Exposure to ISO27001, GDPR, and data-protection environments.
• A personable, friendly communication style - confident speaking with clients and able to put people at ease.
• The ability to break down complex issues into simple guidance.
• UK-based with full right to work.

Certifications are a bonus, not a requirement - your mindset, professionalism, and communication style matter most.

You Are

• Naturally conversational, approachable, and good with people.
• Curious, proactive, and eager to learn.
• Someone who enjoys solving real-world problems, not just following checklists.
• Looking for a long-term consulting career with room to grow.

• c£40k-£55k salary, depending on experience, plus benefits.
• A genuinely people-first team that values kindness, collaboration, and curiosity.
• Supportive senior consultants who will help develop your consulting and technical skills.
• A mix of incident response, GRC, and client-facing engagements - no more repetitive shift work.
• Long-term client relationships where you get to see the real impact of your work.
• Remote-first, flexible working.