Senior Security Consultant
SydneyHybridFull-time
AI Summary
A senior consultant leads and delivers cybersecurity consulting engagements for multiple clients, conducting risk assessments, designing security architectures, advising on compliance, and acting as a trusted advisor.
About this role
Position Title: Senior Consultant
Location: Sydney
Role Purpose
Do you enjoy helping organisations understand, secure, and strengthen their cyber security postures against modern security threats? At NCC Group, you’ll help clients manage their cyber security risks across all environments and multiple business sectors.
Our Senior Cyber Security Consultants play a key client-facing role, providing expert cybersecurity advisory services to multiple clients across industries. This position focuses on delivering high-impact security assessments, strategic recommendations, and implementation support while balancing technical depth with strong stakeholder engagement. The consultant acts as a trusted advisor, helping clients manage cyber risk, meet regulatory requirements, and align security initiatives with business objectives.
You’ll work at the intersection of cyber security, risk management, and operational resilience, supporting organisations as they respond to increasing regulatory scrutiny, geopolitical risk, and complex third-party ecosystems. This is a high-impact consulting work that blends strategic advisory, governance, and practical security improvement across supply chains.
Key Responsibilities
Summary
- Lead and deliver cybersecurity consulting engagements for multiple clients.
- Conduct enterprise risk assessments, security maturity assessments, and gap analysis.
- Design and recommend security architectures, operating models, and control frameworks.
- Advise clients on regulatory and compliance requirements (e.g., ISO 27001, NIST, SOC 2, PCI-DSS, GDPR).
- Develop cybersecurity strategies, roadmaps, policies, and governance frameworks.
- Prepare and present executive-level reports, risk dashboards, and recommendations.
- Manage client relationships and act as a trusted security advisor.
- Contribute to proposals, statements of work, and business development activities.
- Liaise with the Resource Management and Pre-Sales team during the sales cycle to assist in quantifying, pricing, and assessing resources required for the project delivery.
- Assist with sales proposals, bids and tenders for delivery of consulting and implementation services.
Skills, Knowledge & Expertise
What we are looking for in you
- Strong experience in cyber security risk management, maturity assessments, supply chain security, third-party risk, or operational risk consulting, ideally in complex enterprise environments
- Bachelor's degree in computer science, Information Security, or related discipline.
- 5+ years of experience in cybersecurity, with significant consulting or advisory experience.
- Strong knowledge of cybersecurity frameworks, risk management, and governance models.
- Experience working across multiple client environments and industries.
- Ability to balance hands-on technical work with strategic advisory responsibilities.
- Excellent written and verbal communication skills for technical and non-technical audiences.
- Practical understanding of controls and risk management frameworks, supplier assurance, and ecosystem-level security threats
- Experience conducting risk assessments, workshops, or assurance activities with third parties.
- Strong written and verbal communication skills, able to produce concise reports, and deliver clear recommendations.
Nice-to-haves (not show-stoppers)
- Experience with regulatory and compliance drivers (e.g. DORA, NIS2, SOCI, critical infrastructure regulations)
- Understanding of software supply chain security (e.g. SBOMs, secure development, open-source risk)
- Exposure to geopolitical risk, sanctions, or operational resilience
Certifications such as:
o CISA, CISSP, CISM, CRISC
o ISO 27001 / 27036 Lead Implementer or Auditor
o Supply chain or risk-related certifications
Consulting-Specific Competencies
· Client relationship and stakeholder management
· Engagement delivery and time management across multiple projects
· Executive-level presentation and storytelling
· Commercial awareness and contribution to sales efforts
· Leadership, coaching, and team collaboration
Ways of working
- Focusing on Clients and Customers.
- Working as One NCC.
- Always Learning.
- Being Inclusive and Respectful.
- Delivering Brilliantly.
Our company
At NCC Group, our mission is to create a more secure digital future. That mission underpins everything we do, from our work with our incredible clients to groundbreaking research shaping our industry. Our teams' partner with clients across a multitude of industries, delving into, securing new products, and emerging technologies, as well as solving complex security problems. As global leaders in cyber and escrow, NCC Group is a people-powered business seeking the next group of brilliant minds to join our ranks.
Our colleagues are our greatest asset, and NCC Group is committed to providing an inclusive and supportive work environment that fosters creativity, collaboration, authenticity, and accountability. We want colleagues to put down roots at NCC Group, and we offer a comprehensive benefits package, as well as opportunities for learning and development and career growth. We believe our people are at their brilliant best when they feel bolstered in all aspects of their well-being, and we offer wellness programs and flexible working arrangements to provide that vital support.
Come join us?
Benefits
What do we offer in return?
We have a high-performance culture which is balanced evenly with world-class well-being initiatives and benefits:
- Superannuation
- Leaves Benefits include but not limited to:
- Annual leave – 20 days
- Sick Leave & caregivers Leave – 10 days
- Marriage/Civil Partnership Leave (1 day)
- Moving Home Leave (1 day)
- Employee Assistance Program with access to confidential counselling support 24 hours a day, 7 days a week. This is a free service for up to 6 occasions per calendar year for you and your close family.
So, what’s next?
If this sounds like the right opportunity for you, then we would love to hear from you! Click on apply to this job to send us your CV and cover letter and the relevant member of our global talent team will be in touch with you. Alternatively send your details to global.ta@nccgroup.com .
Skills
CybersecurityGDPRISO 27001NISTOperational ResiliencePCI-DSSRisk ManagementSOC 2Supply Chain SecurityThird-party Risk
Explore related jobs
More jobs at NCC Group
Similar Cybersecurity jobs
Jobs in Sydney
- Telehealth DoctorInstantscripts · Sydney, NSW
- Experienced Lifecyle Asset Management ConsultantAECOM · Sydney, NSW
Product Manager - Finance Super App (Australia)Bjak · Sydney, Australia
Product Owner - Finance Super App (Australia)Bjak · Sydney, Australia
Commis ChefAccorhotel · Sydney, NSW
Project Engineer / Project Coordinator - CBRHLindsay Construction · Sydney, Nova Scotia
