Find your next cybersecurity opportunity


Data Protection and Cyber Security Consultant

NCC Group

NCC Group

Remote · United Kingdom
Posted on Tuesday, October 24, 2023

Role: Data Protection and Cyber Security Consultant

Location: Remote

Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group.

We are on a mission to make society a safer and more secure place. Our people are the ones who make that possible; a global community of talented individuals working together towards a safer future.

We aim to create an environment where everyone can reach their full potential. We work together, we are brilliantly creative, we embrace difference and we want you to join in our mission, to make the world safer and more secure.

Take a look at our website here to learn more about why we’re one of the leading global Cyber Security and Risk Mitigation business…


Summary of role

NCC Group provides Data Protection and Information Assurance consultancy to help businesses protect critical systems and information. We do this by defining strategies, developing policies, conducting data protection and security maturity and risk assessments, architecture reviews and by delivering data protection and security awareness & training. We also provide staff augmentation to businesses to provide an on-demand data protection or cyber expert in the short, medium or long term to solve pressing business privacy or cyber orientated problems and challenges.

Our core services include:

  • Strategy and Governance

  • Data protection and Privacy

  • FData discovery and mapping

  • Business resilience

  • ISO 27001 assessments

  • PCI, PIN and 3DS

  • Card Protection audits

  • On demand augmentation roles

  • Incident response planning

  • Risk advisory and assurance

  • Gold/Silver/Bronze tabletops

  • Supply chain assurance

  • Incident response readiness and planning

  • Cyber maturity assessments

Alongside our core services, we have a range of bespoke services to help organisations protect their systems and information:

  • Risk mitigation assessments

  • Security architecture review

  • Security awareness and Training programmes

  • Security policy development and adoption

  • Cyber transformation programmes

The Opportunity:

We have a fantastic new opportunity to join our UK Consulting and Implementation division for a Senior Consultant. The ideal candidate will have prior consulting experience and commercial exposure within the data protection, cyber and assurance field, gained from delivering a diverse range of services ideally across a broad client base. In addition to your technical skills, you will have strong client facing skills and be comfortable dealing with senior client stakeholders.

Key Accountabilities:

  • Build and maintain sustainable trusted client relationships through high-quality delivery, ensuring output exceeds client expectations.

  • Conduct onsite and remote activities to advise, assess, analyse, and report in line with the engagement and client business requirements. This will involve meeting client stakeholders, conduct of documentation reviews, auditing technical solutions and systems as well as presenting information and advice to senior business partners.

  • Translate the technical and non-technical findings from an assessment or exercise into relevant, actionable remediation road maps for customers.

  • Responsible for adhering to all internal policy and procedures in relation to security and quality best practice.Engage with Markets and Pre-Sales teams during the sales cycle to assist in quantifying, pricing and assessing the capability required for the project delivery.

  • Assist with sales proposals, bids and tenders for delivery of Assurance & Compliance services.

Minimum Requirements:

  • Experience in delivering Data Protection Impact Assessments, supporting Data Subject Requests and data breaches along with researching and responding to privacy queries and implementation of privacy frameworks.

  • A deep understanding of the GDPR, DPA 2018 and knowledge of other European or wider privacy legislation.

  • Privacy qualification such as CIPP/E.

  • You will have working knowledge of core control frameworks, such as, NIST, SANS Top 20 CSC, ISO 27001, ISO27701, NIS and CAF.

  • Have experience of delivering risk assessments using common risk methodologies like ISO 27005, IRAM and FAIR.

  • You are diligent and time conscious to deliver projects on time and in budget, and to a high level of customer satisfaction – exercising customer care at all times.

  • Demonstrate a strong ability to develop a rapport with customers and to engender long lasting trusted relationships.

  • Have strong business, consultancy and technical skills within the Cyber Security Industry.

  • Excellent communication, consulting soft skills and presentation skills.

  • Exceptional written communication and reporting skills.

Desirable Requirements:

  • Experience in the role of DPO

  • Identity and Zero trust

  • Privacy by design

  • Security by design

  • Artificial Intelligence

  • Cloud related certifications across AWS/GCP/Azure


  • Client-Focused: Prioritizes client needs and expectations, ensuring that all actions and decisions lead to client satisfaction and success.

  • Collaborates as ‘One NCC’: Works in unison with all departments and teams, fostering a united front and shared objectives across the entire organisation.

  • Adds Value: Goes beyond the minimum requirements to provide solutions and contributions that enhance the customer’s success and growth.

  • Enables and Empowers: Provides tools, resources, and support to team members, fostering an environment where they can thrive and excel.

  • Personal Responsibility: Takes ownership of actions, decisions, and outcomes, acknowledging successes as well as areas for improvement.

  • Communicates Openly and Respectfully: Shares information transparently while maintaining

  • respect and consideration for all stakeholders.

  • Open Mindset: Embraces new ideas, diverse perspectives, and is willing to adapt in response to evolving situations or feedback.

  • Growth and Development: Actively seeks opportunities for personal and professional growth, championing learning and evolution for oneself and the organisation.

  • Analytical Thinking: Demonstrates a systematic approach to resolving issues and identifying

About NCC Group

The NCC Group family has over 2,200 members located all around the world, providing a trusted advisory service to 15,000 customers. Born in the UK, we have now have offices in North America, Canada, Europe, Asia- Pacific and United Arab Emirates.

We are passionate about helping our customers to protect their brand, value and reputation against the ever-evolving threat landscape. We fuel that passion with investment in our people and our business.

Our values and code of ethics are at the heart of how we operate – we work together, we are brilliantly creative and we embrace difference. We treat everyone and everything with equal respect.

We want to create an environment where all colleagues feel psychologically, emotionally and physically safe to be authentic, sharing their personal experiences to represent the diversity of the world they live in, and have equal opportunity to achieve their best.

About your application

We review every application received and will get in touch if your skills and experience match what we’re looking for. If you don’t hear back from us within 10 days, please don’t be too disappointed – we may keep your CV on our database for any future vacancies and we would encourage you to keep an eye on our career opportunities as there may be other suitable roles.

If you do not want us to retain your details, please email global.ta@nccgroup.com. All personal data is held in accordance with the NCC Group Privacy Policy. We are committed to diversity and flexibility in the workplace. If you require any reasonable adjustments to support you during the application process, please tell us at any stage.

Please note that this role involves mandatory pre-employment background checks due to the nature of the work NCC Group does. To apply, you must be willing and able to undergo the vetting process. This role being advertised will be subject to BS7858 screening as a mandatory requirement.