Cyber Security Consultant

Job Title: Cyber Security Consultant

Contract Type: Permanent

Location: Alderley Edge or Edinburgh

Working Style: Hybrid 50% home/office based

Over the last few years, we’ve been on a continuous improvement journey and are looking to expand the security and resilience team. These new roles will allow us to fully enact our threat-led security program, drive further improvements across cyber and support our organisational goal of building a secure and resilient mutual. With a security team over 60 already, these new roles will enhance our capabilities as the threat landscape continues to evolve. 

We are recruiting for an exciting role as a Cyber Security Consultant within our Cyber Engineering and Architecture team. This role will be pivotal in bridging the gap between security architecture, security engineering and business operations, with opportunities to influence enterprise-wide initiatives, ensuring that security solutions are not only technically sound but also aligned with business objectives and risk appetite.

Their primary purpose is to assess existing security measures, identify vulnerabilities, and design robust strategies to mitigate risks. You will advise on best practices, implement security solutions, and ensure compliance with relevant regulations and standards.

About the role  

• Conduct security assessments and risk analyses across infrastructure, applications, and third-party services.
• Design and implement security controls, policies, and procedures to mitigate identified risks.
• Provide expert guidance on regulatory compliance (e.g., ISO 27001, NIST CSF, PCI-DSS).
• Act as a liaison between technical security teams and business units to gather, clarify, and translate security requirements.
• Ensure that security solutions are fit-for-purpose and support business continuity and operational efficiency.
• Contribute to business cases and impact assessments for security-related projects
• Support incident response efforts and post-incident reviews.

About you  

• At least five years of Engineering & Operational experience in Cyber security roles. 
• Familiar with working to a high level of accuracy and have a dedicated and focused work ethic. 
• An effective communicator with proven ability to influence key stakeholders. 
• Experience of leading and inspiring cyber security teams with differing skillsets. 

Advanced knowledge of Core Security Technologies:

• SIEM & XDR
• EDR/NDR
• IAM & PAM
• Zero Trust Architecture
• Data Loss Prevention (DLP)
• Security Automation & Orchestration (SOAR)
• Cyber Resilience Platforms

Advantageous: Knowledge/Understanding of:

• AI/ML in Security
• Cloud Security Posture Management (CSPM)
• Infrastructure as Code (IaC)
• Secure Access Service Edge (SASE)
• GRC Platforms
• Regulatory Tech

If you think you would be a great fit for our team at Royal London but don’t meet all the requirements of the role, please get in touch as your application will still be considered.

About Royal London

We’re the UK’s largest mutual life, pensions and investment company, offering protection, long-term savings and asset management products and services.   

Our People Promise to our colleagues is that we will all work somewhere inclusive, responsible, enjoyable and fulfilling. This is underpinned by our Spirit of Royal London values; Empowered, Trustworthy, Collaborate, Achieve. 

We've always been proud to reward employees by offering great workplace benefits such as 28 days annual leave in addition to bank holidays, an up to 14% employer matching pension scheme and private medical insurance. You can see all our benefits here - Our Benefits  

Inclusion, diversity and belonging 

We’re an Inclusive employer. We celebrate and value different backgrounds and cultures across Royal London. Our diverse people and perspectives give us a range of skills which are recognised and respected – whatever their background.