Overview
At ProtekCyber, compliance isn’t just about ticking boxes — it’s about empowering businesses with clarity and confidence in their security posture. As a Compliance & Risk Consultant, you’ll guide clients across the UK in building resilient, regulation-ready cybersecurity frameworks. Whether it’s acting as a virtual CISO or supporting ISO 27001 accreditation, you’ll be instrumental in helping our clients meet legal, regulatory, and business-driven security goals.
24/7
Security Operations
1-5+
Years Experience
Hybrid
Work Model
Join the Frontline of Cyber Defense
Help businesses bounce back stronger by delivering fast, decisive, and intelligent incident response
Client Interaction & Communication
- Act as a technical lead during high-pressure client engagements, providing clear updates, calm direction, and confidence throughout.
- Translate technical threat data into plain-English insights and recommendations.
- Provide structured situation reports and final incident reports tailored to stakeholder needs.
Innovation & Improvement
- Contribute to the development of in-house tooling, detection logic (YARA, Sigma, Snort), and response playbooks.
- Share insights with the wider team to inform detection tuning and threat intelligence development.
- Continuously refine our incident response methodology to reflect evolving threats and client needs.
Knowledge Sharing & Collaboration
- Actively mentor junior team members through shadowing, feedback, and knowledge transfer during live engagements.
- Deliver internal training sessions and workshops to uplift team capabilities in digital forensics, threat hunting, and incident containment.
- Contribute to cross-functional retrospectives post-incident to capture lessons learned and drive process improvements.
What You’ll Be Doing
- Serve as a virtual CISO to clients, advising leadership on security governance, strategy, and risk posture.
- Lead the design, review, and implementation of security governance frameworks aligned to ISO 27001, NIST, Cyber Essentials Plus, and GDPR.
- Conduct risk assessments, gap analyses, and privacy impact assessments across a wide range of environments.
- Work directly with client stakeholders — including C-level and board members — to advise on cybersecurity risks, compliance obligations, and security programme development.
- Draft, refine, and implement security policies, standards, and procedures to meet business and regulatory needs.
- Support clients through audits and certification processes, including ISO 27001, Cyber Essentials Plus, and PCI DSS.
- Identify control weaknesses, advise on remediation strategies, and help define improvement roadmaps for both SME and enterprise clients.
- Collaborate with our sales and technical teams to scope services, respond to RFPs, and support business development activities.
Bonus Skills
- ISO 27001 Lead Auditor or Lead Implementer certification.
- Experience supporting tender responses and writing proposals.
- Familiarity with ISO 27701, PCI DSS, ISO 27018, and UK Data Protection Act.
What You’ll Bring
- 5+ years’ experience in cyber risk, compliance, governance, or data privacy consulting.
- Strong understanding of privacy and security frameworks such as ISO 27001, GDPR, NIST, SOC 2, and COBIT.
- Experience advising on data protection, PII, and security controls in cloud and hybrid environments.
- Proven ability to communicate complex compliance requirements in simple, business-aligned language.
- Confidence to work with C-level executives, present findings, and influence strategic decisions.
- Solid knowledge of modern IT infrastructure and cloud services (e.g. Microsoft 365, Azure, AWS).
Why ProtekCyber?
- Work with clients that span finance, healthcare, legal, government, and fast-growing tech sectors.
- Be part of a consultancy-first culture where your insight shapes our delivery and methodology.
- Access paid certification paths, mentorship, and tailored professional development.
- Hybrid flexibility, performance bonuses, private medical cover, and regular team retreats.
Apply Now
Ready to join our team? Fill out the application form below and we'll get in touch with you.