Principal Cyber Security Consultant

Leonardo
Bristol
1 year ago
Applications closed

Related Jobs

View all jobs

Principal Security Consultant (Red Team)

Principal Security Consultant

Principal Security Consultant

Senior Information Security Consultant

Senior Security Consultant

Principal Security Architect

Job Description:

Are you passionate about cyber? Does solving complex problems interest you? Would you thrive in a collaborative environment? Do you want to apply your skills to a complex problem domain?

Then we want to speak to you

We are recruiting for a number of Principal Consultant and Senior Consultant roles, but wherever you go, you will work on some of the most challenging and rewarding security problems in the UK, designing and developing solutions that sit at the heart of our products.

Your work at Leonardo will see you take the lead in solving customer problems in an agile, innovative and team-centric manner. There is a clear and defined pathway to achieving chartership, NCSC certification and greater responsibility.

Your work may involve:

Relate- Our customers and their concerns are at the heart of what we do. As a consultant you will actively listen and empathise with our customers to build rapport.

Understand– We add value by solving problems. As a consultant you will define potential solutions to problems based on your experience and technical knowledge – sometimes with only limited information to hand.

Assess– At Leonardo we adopt a risk-based approach to any security problem. As a consultant you will identify, measure and analyse security risks and explain to customers how these risks could impact their business objectives.

Treat– Resolving risks is the technical core of our offering. As a consultant you will assist in defining appropriate and proportionate security solutions across people, process and technology, and align to the identified risk picture through the creation of security architecture visions, patterns and designs.

Assure– Having confidence in security maturity is a key requirement especially in heavily regulated industries. As a consultant you will assist in defining and performing security assessments that span people, process and technology, and recommend remediations that arise from those assessments.

Develop– All our offerings are based on a core set of products. As a consultant you will help in the technical development of our products to be used across our customer sectors.

The role may involve hybrid working, but we also encourage working on site from time to time at one of our Leonardo offices and closely with our customers. Talk to us to find out more.

Our Consultants work in multidisciplinary teams spanning a range of activities that depend on the customer’s requirements and your own strengths and interests.

As a Senior Consultant, you will often take the lead on a technical delivery or small to medium-sized project, or lead a workstream within a larger programme. As a Principal Consultant, you will be considered a technical expert in a particular cyber domain and could be asked to lead a larger programme or a concurrent series of smaller engagements.

We are recruiting for a number of roles from a variety of backgrounds and skillsets, including:

Risk and Governance–Helping customers to improve their security strategy, policies and procedures and designing the best way to implement them in their business.Conducting security risk assessments and presenting results to senior management in a clear and understandable manner.Compliance and Maturity –Conducting security audits and presenting results in reports and dashboards to help customers to understand their security compliance and maturity.Designing audit and resilience frameworks to help customers improve their existing auditing approach.Design and Countermeasures –Reviewing risk assessments, system, site and network architectures and design documentation (HLD/LLD) to identify potential exploitable vulnerabilities and propose appropriate security controls in either an IT or OT environment.Working with solution architects to ensure that systems are Secure by Design and satisfy relevant accreditation requirements.

Based upon your skills and foundation knowledge, we will assess where your knowledge and skills would best fit and discuss the options with you.

Security Clearance

:

Life at Leonardo

With a company funded benefits package, a commitment to learning and development, and a flexible approach to working hours focused on the needs of both our employees and customers, a career with Leonardo has never offered as many opportunities or been more accessible to as many people.

Flexible Working:Flexible hours with hybrid working options. For part time opportunities, please talk to usCompany funded flexible benefits:Access to private healthcare, dental schemes, Workplace ISA, Go Green Car Scheme, technology and lifestyle options (£500 annual allowance)Holidays:25 days plus bank holidays, option to buy/sell leave and to accrue up to 12 additional flexi leave days per yearPension:Award winning pension scheme (up to 10% employer contribution)Wellbeing: Employee Assistance Programme with access to free mental health support, financial wellbeing support and network groups to demonstrate our ongoing commitment to diversity & inclusion (Enable, Pride, Equalise, Reservists, Carers)Lifestyle:Discounted Gym membership, Cycle to work schemeTraining:Free access to more than 4000 online courses via CourseraReferral Incentive:You can earn a reward for successfully referring a friend or family memberBonus:Scheme in place for all employees at management level and below

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Contract vs Permanent Cybersecurity Jobs: Which Pays Better in 2025?

Cybersecurity has become one of the fastest-growing and most crucial fields in modern business. With high-profile breaches dominating headlines and the ongoing digital transformation exposing organisations to new threats, companies across the UK are competing to attract skilled cybersecurity professionals. Roles range from penetration testers (pen testers) and SOC (Security Operations Centre) analysts to compliance officers, cloud security architects, threat intelligence analysts, and CISOs (Chief Information Security Officers). As demand continues to surge, cybersecurity salaries have climbed accordingly, and businesses have turned to more flexible hiring practices. Alongside permanent employment, many professionals explore short-term day‑rate contracting or fixed-term contracts (FTCs), searching for the ideal balance of pay, job security, and growth opportunities. Which arrangement truly pays better in 2025—and which best aligns with your ambitions? In this article, we dive into the contract vs. permanent debate with a focus on cybersecurity roles. We will examine the current market, the structure of day‑rate vs. FTC vs. permanent positions, the pros and cons of each, and some hypothetical pay comparisons. By the end, you should have a clearer sense of which career path might suit your situation and goals—whether you are a seasoned specialist aiming for top rates, or an up-and-coming analyst seeking a stable environment to develop in.

Jobs

Cyber Security Jobs for Non‑Technical Professionals: Where Do You Fit In?

Defence Needs More Than Hackers in Hoodies When headlines warn of ransomware crippling hospitals or deepfakes swaying elections, we picture hoodie‑clad hackers and elite penetration testers. Yet the reality of the UK’s cyber security sector is broader—and desperately short of talent. The Department for Science, Innovation & Technology (DSIT) estimates a shortfall of 11,200 cyber security professionals in 2024, while 43 % of advertised roles require governance, risk or communication skills rather than hands‑on technical exploits. Put plainly: if you can guide policy, manage projects, interpret regulations or inspire behaviour change, cyber security wants you. This guide highlights the fastest‑growing non‑technical roles, the transferable skills you already possess, and a concrete 90‑day plan to land a cyber security job—no packet sniffers required.

Careers Jobs

BAE Systems Cybersecurity Jobs in 2025: Your Complete UK Guide to Protecting Governments, Businesses and Critical Infrastructure

From securing the Royal Navy’s new Dreadnought submarines to foiling multimillion‑pound fraud rings, BAE Systems Digital Intelligence (DI)—formerly Detica—sits at the sharp end of global cyber defence. Head‑quartered in Guildford with hubs in Gloucester, Leeds and London, the 5,500‑strong DI business delivers threat‑intelligence platforms, secure‑by‑design software and 24/7 SOC services to government and commercial clients worldwide. With escalating ransomware, AI‑driven disinformation and complex supply‑chain threats, BAE plans to expand its UK cyber workforce by 20 % in 2025. Whether you’re a graduate passionate about reverse engineering, a DevSecOps engineer who loves IaC, or an incident‑response pro comfortable in high‑side environments, this guide explains how to land a BAE Systems cybersecurity job in 2025.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.