Cyber Security Consultant

About the role;

As a Cyber Security Consultant, you will provide expert guidance and comprehensive security solutions to TSG's clients, ensuring their systems are robust against cyber threats. You will conduct risk assessments, perform vulnerability analyses, and offer strategic recommendations to enhance their security posture based on industry-standard frameworks and best practices.

Your role will involve managing client engagements, offering subject matter expertise, and collaborating with internal teams to deliver exceptional security services.

This is a home-based role with some travel required when necessary.

Who are we?

TSG (Technology Services Group) are a Managed IT Services provider supporting businesses UK wide with their technology solutions. As a Microsoft Partner we are committed to delivering excellence for our customers alongside investing in our colleagues to provide them with the knowledge and tools required to deliver great results.

TSG are one of the few Microsoft Partners in the UK who hold all seven Microsoft designations, and one of the only partners who specialise in mid-market. Our commitment to excellence for our customers and employees is backed by our consistent world class NPS score of +80 and our recent accreditation as a 'Great Place to Work' in addition to being placed on the '2024 UK's Best Workplaces in Tech' list. Our guiding principles of Team TSG, Service Excellence and Shared growth are at the heart of everything we do.

Why should I work for TSG?

• Employee ownership - as a growing business we want to ensure that everybody who contributes towards our success, shares in our success. High performing members of Team TSG are entered into an employee benefits trust (EBT). The EBT is the single largest beneficiary within TSG meaning employees will share the benefits of the proceeds, driving a high performing culture with long term value and mutually beneficial outcomes
• Our open and honest culture where feedback is taken on-board and acted upon
• Our social events - annual all expenses paid 'TSG Festival' and team building funds
• Two paid CSR days per annum that you can use to support the community
• Giving something back - the 'TSG Foundation' established in November 2022 has so far donated over £120,000 to support nominated businesses and charities
• Our responsibility to the environment as we work towards net carbon zero
• Flexible working opportunities including home working and hybrid options
• Annual salary benchmarking
• Excellent progression opportunities, training and support, including recognised qualifications

Job responsibilities will include, but are not limited to;

• Execute thorough risk assessments and gap analyses for clients.
• Provide in-depth control reviews, maturity ratings, and remediation actions based on Governance, Risk, and Compliance (GRC) frameworks such as Cyber Essentials, NIST, CIS, and ISO27001
• Conduct comprehensive vulnerability assessments of client systems to identify potential security risks.
• Assist with the implementation of security measures through TSG and partner-led services including Managed Detection and Response (MDR), Penetration and data loss prevention (DLP) programs.
• Provide guidance and recommendations on technical security governance, incident response, and security awareness training.
• Act as a trusted advisor on cyber and information security topics, helping clients implement and refine their security strategies.
• Prepare and present clear and concise security reports to both technical and non-technical stakeholders.
• Manage multiple client workstreams, ensuring high-quality delivery aligned with client expectations.
• Provide subject matter expertise to clients, maintaining a high level of client satisfaction and acting as a key point of contact.
• Work with Leadership, Cyber, and Sales Teams to respond to tenders/projects and provide pre-sales support.
• Assist with proactive measures, including writing briefings, threat reports, and marketing collateral.

Knowledge, Skills & Experience;

• Relevant professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM).
• Familiarity with GRC frameworks such as ISO27001, NIST, CIS benchmarks, and Cyber Essentials/Plus.
• Proven experience in a cybersecurity consultancy role, with a strong understanding of cybersecurity principles, protocols, and standards.
• Demonstrable experience working on multiple client engagements in a client-facing capacity, alongside Sales, Presales, and Technical functions.
• Proficiency with common cybersecurity tools and technologies, and a strong knowledge of current cybersecurity threats, trends, and mitigation strategies.
• Experience in developing cybersecurity strategies and frameworks.
• Ability to take ownership of client-led workstreams, seeing them through to completion with a proactive and professional approach.
• Competence in influencing outcomes and building business cases for investment.
• Excellent communication and client management skills, with the ability to explain complex concepts to non-technical audiences. Exposure to C-level audiences is preferred.
• Good general knowledge of IT systems, covering traditional infrastructure and cloud/SaaS platforms.

Benefits;

• 25 days annual leave + public holidays, rising with length of service
• Employee benefits trust
• Company bonus scheme
• Life assurance 4 x Salary
• Contributory pension scheme at 4% matched
• Healthcare and Cash plan
• Electric vehicle salary sacrifice scheme
• Cycle to work scheme
• Perkbox discounts
• Employee assistance programme
• Paid CSR Days
• Company sick pay and income protection cover
• Enhanced Maternity and Paternity pay
• Employee recognition scheme
• Eyecare vouchers
• Discounted gym membership
• Long service rewards

If this sounds like the role for you, please apply today to be considered.