Be at the heart of actionFly remote-controlled drones into enemy territory to gather vital information.

Apply Now

QSA Consultant

Birmingham
8 months ago
Applications closed

About LRQA Nettitude

Founded in 2003, LRQA Nettitude is a global leader in cyber security, offering world-class services in red teaming, penetration testing, threat intelligence, R&D, detection and response, and GRC. Our clients range from central banks and government bodies to major retailers and critical national infrastructure.

We're an award-winning cyber security provider at an exciting stage of growth. As technology and threats evolve, we're looking for talented individuals to help us stay at the forefront of the industry.

The Role - QSA Consultant (UK, Remote)

We're looking for a QSA to join our GRC team in a home-based role, with travel to client sites (mostly in the UK). You'll deliver security consultancy in areas including:

PCI DSS consultancy and assessments

ISO 27001 gap analysis and implementation support

Risk assessments and third-party risk management

Reviews against standards like NCSC's 10 Steps and NIST CSF

Requirements

Essential:

Active QSA with experience in complex PCI DSS assessments

ISO 27001 experience, including ISMS implementation and certification

Familiar with NIST CSF and basic IT/security concepts (networking, OS, etc.)

Comfortable leading client-facing consultancy work

Self-organized and quality-focused

Desirable:

Knowledge of NIS directive, NCSC CAF, or CAA ASSURE

Experience presenting to C-level audiences

Mentoring or team leadership experience

Security awareness training delivery

Hands-on technical experience (past or present)

Certifications

As a QSA, you must meet PCI SSC requirements (certs from List A & B). Useful certifications include:

ISO 27001 Lead Auditor/Implementer

CISSP, CISM, CISA, CRISC

What We Offer

Join a high-performing, people-focused team with a strong culture of collaboration. We support remote work, personal growth, and getting involved in the broader cyber community.

You'll have opportunities to:

Make a difference - shape services and challenge the status quo

Get involved - blog, speak, or attend industry events

Keep learning - beyond certifications, explore new domains and ideas

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Neurodiversity in Cyber Security Careers: Turning Different Thinking into a Superpower

Cyber security is all about thinking like an attacker, spotting unusual patterns, protecting systems & responding calmly when everything looks like it’s on fire. It’s a discipline built on curiosity, persistence & noticing things other people miss. That’s exactly why it can be such a good fit for many neurodivergent people. If you live with ADHD, autism or dyslexia, you may have been told your brain is “too distracted”, “too literal” or “too disorganised” for a security role. In reality, the traits that can make traditional office work tough often line up beautifully with cyber security work – from hyperfocus in incident response to meticulous analysis in threat hunting. This guide is written for cyber security job seekers in the UK. We’ll look at: What neurodiversity means in a cyber context How ADHD, autism & dyslexia strengths map to different security roles Practical workplace adjustments you can ask for under UK law How to talk about neurodivergence during applications & interviews By the end, you’ll have a clearer sense of where you might thrive in cyber security – & how to turn “different thinking” into a genuine superpower.

Jobs

Cyber Security Hiring Trends 2026: What to Watch Out For (For Job Seekers & Recruiters)

As we move into 2026, the cyber security jobs market in the UK is changing fast. Attackers are scaling up with automation & AI, cloud estates are more complex, & regulators are tightening expectations around resilience & data protection. At the same time, budgets are under pressure & some organisations are consolidating their tech teams. Despite all this, demand for cyber security skills remains strong. Skilled defenders, engineers & leaders are still hard to find, & the stakes are only getting higher. Whether you are a cyber security job seeker planning your next move, or a recruiter building security teams, understanding the key cyber security hiring trends for 2026 will help you make better decisions.

Jobs

Cyber Security Recruitment Trends 2025 (UK): What Job Seekers Must Know About Today’s Hiring Process

Summary: UK cyber security hiring has shifted from title‑led CV screens to capability‑driven assessments that emphasise incident readiness, cloud & identity security, detection engineering, governance/risk/compliance (GRC), measurable MTTR/coverage gains & secure‑by‑default engineering. This guide explains what’s changed, what to expect in interviews, & how to prepare—especially for SOC analysts, detection engineers, blue/purple teamers, penetration testers, cloud security engineers, DFIR, AppSec, GRC & security architecture. Who this is for: SOC & detection engineers, security operations leads, DFIR analysts, penetration testers/red teamers, purple teamers, AppSec/DevSecOps engineers, security architects, cloud security engineers, identity/IAM engineers, vulnerability managers, GRC/compliance specialists, product security & security programme managers targeting roles in the UK.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.