remote

Cyber Security Consultant - GRC - Cyberfort

Software Engineer

Experienced Cyber Security Consultant specializing in Governance, Risk & Compliance (GRC). Lead implementation of ISO 27001, NIST frameworks, and cloud security controls while conducting audits and risk assessments for defence‑sector clients.

About the role

Key Responsibilities

Design, implement and maintain GRC programs aligned with ISO 27001, NIST and other defence‑specific standards.
Conduct security audits, risk assessments, and gap analyses across on‑premise and cloud environments.
Develop and deliver compliance documentation, policies, and remediation roadmaps for clients.
Collaborate with technical teams to integrate security controls into existing architectures and support incident response activities.
Provide expert guidance to senior stakeholders on regulatory requirements and emerging cyber threats.

Requirements

5+ years of experience in cyber security consulting with a focus on GRC.
Strong knowledge of ISO 27001, NIST CSF, and defence‑related compliance frameworks.
Proven track record of conducting security audits, risk assessments, and delivering remediation plans.
Experience with cloud platforms (AWS, Azure, GCP) and associated security controls.
Excellent communication skills and ability to translate technical findings into business‑focused recommendations.

Skills

awsazurepenetration testingagile

CompanyCyberfort

DepartmentEngineering

LocationUnited Kingdom

Experience3+ years

Tenurefull-time

LevelMid-Level

Posted June 24, 2026