Share this Job

Cyber Security Consultant

Date: 25-Jan-2023

Location: Malvern, England, GB

Company: QinetiQ


  1. Create business risk models and associated material, in support of operational cyber security and business planning across a range of different domains or sectors using established frameworks (e.g. NIST, UK Government)
  2. Undertake cyber security audit processes in support of operational and business planning activity across a range of different domains or sectors against recognised standards (e.g. ISO27001, UK Government)
  3. Undertake cyber security vulnerability analysis to provide a rich picture of organisational maturity and risk exposure to cyber security, in support of operational and business planning activity across a range of different domains or sectors using established frameworks (e.g. NIST, MITRE ATT&CK, UK Government)
  4. Identify mitigations for cyber risk in a given business or operational scenario and threat environment
  5. Support development of cyber security risk cases in a given business or operational context


Key Capabilities/Knowledge

  • Understand relevant NIST frameworks and ISO27001 standards and how to apply in practice
  • Knowledge of MITRE ATT&CK
  • Understands the impact of cyber risk, security accreditation and certification on business or operational outcomes
  • Able to articulate regulatory requirements and devise courses of action to meet these appropriate to the business or operational context.
  • Able to devise effective and creative risk mitigation strategies that enhance business outcomes
  • Understand cyber risk and mitigations put in place and can provide evidence to help refine risk mitigation approaches
  • Able to identify, document and articulate security risk and mitigation approaches, against technology solutions and business processes
  • Able to engage and communicate effectively with customers
  • Able to engage and communicate effectively with stakeholders at all levels
  • Good awareness of digital technology (in particular computer and computer network)
  • Awareness of how architects and designers employ the technology to build systems of interest
  • Demonstrate good judgement in relation to cyber risk and vulnerability assessment
  • Able to articulate evidenced and convincing arguments for recommended courses of action
  • Government, defence, CNI market understanding
  • Able to work independently and seek guidance on own initiative for unusual or complex situations




  • STEM degree or equivalent and relevant experience in cyber security role
  • Digitally literate (including fluency in Microsoft Office tools)
  • Minimum of 2-3 years of experience in security vulnerability, risk, audit & compliance


  • Experience applying/work to relevant NIST and ISO27001 frameworks and standards in different sectors and domains including defence, wider UK Government, critical national infrastructure.
  • Experience guiding successful security audit preparation and outcomes
  • Membership of CIISec or equivalent


Why join QinetiQ?

As we continue to grow into new markets around the world, there’s never been a more exciting time to join QinetiQ. The formula for success is our appetite for innovation and having the courage to take on a wide variety of complex challenges.

You’ll experience a unique working environment where teams from different backgrounds, disciplines and experience enjoy collaborating widely and openly as we undertake this exciting and rewarding journey. Through effective teamwork, and pulling together, you’ll get to experience what happens when we all share different perspectives, blend disciplines, and link technologies; constantly discovering new ways of solving complex problems in an diverse and inclusive environment where you can be authentic, feel valued and realise your full potential. Read more about our diverse and inclusive workplace culture here.  

Joining QinetiQ offers you an opportunity to work on a broad range of interesting defence-based projects with vast career progression across a global organisation in addition to competitive personal and professional benefits.  You’ll receive a highly competitive salary and benefits package: our basic salaries are very attractive as we constantly review what’s happening in the market. The range of benefits that we offer include, adaptive and flexible working, generous holiday entitlements, Health Cash Plan, Private Medical Insurance and Dental Insurance and much more. 

About QinetiQ

As a company of over 6,000 dedicated professionals, we are a world-centre of excellence in research and development and act as a catalyst for fast-track innovation, offering outstanding experimentation facilities, and technical, engineering and scientific expertise. QinetiQ is made up of dedicated experts in defence, aerospace, security and related markets, all working together to explore new ways of protecting what matters most. Being part of QinetiQ means being central to the safety and security of the world around us. Partnering with our customers, we help to save lives; reduce risks to society; and maintain the global infrastructure on which we all depend. Come and find out how you can play a role.

Please note that many roles in QinetiQ are subject to national security vetting. Applicants that already hold the appropriate level of vetting may be able to transfer it upon appointment, subject to approval. A number of roles are also subject to restrictions on access to information that mean factors such as nationality, previous nationalities held and the country in which you were born may have an effect on the roles that you can be employed in.