Enterprise Security Consultant

We are looking for a Cyber Security Consultant to join our Cyber Resilience & Response team.

Why Join Us?

Who has a passion for cyber security, threat analysis, risk assessment, and secure system design, and who has a desire to identify vulnerabilities, mitigate security risks, and continuously improve an organization’s security posture through a proactive and structured approach.

We use an interesting and mixed technology stack, including network and application security tools, SIEM platforms, cloud security solutions, vulnerability management tools, and public cloud environments.

In this position, you will use your expertise in cyber security assessments, compliance frameworks, incident response and security architecture, and will advise customers, conduct security assessments, design security controls, and support the implementation of effective cyber security solutions.

* This position requires approximately 30% traveling.

Key Responsibilities

• Provide technical expertise across core security domains, including network security, identity and access management, incident response, cyber resilience, cloud security, SOC, SIEM, and DevSecOps.
• Apply hands-on knowledge of threat actor TTPs to support red-, purple-, and blue-team engagements, clearly communicating attack scenarios (e.g., privilege escalation, data exfiltration, ransomware simulation) to assess customer security posture and identify exploitable weaknesses.
• Conduct attack-based and control-based security assessments using relevant frameworks and regulations, including MITRE ATT&CK, EU AI ACT, NIS2, DORA, NIST CSF, ISO27001:2022, CIS etc.
• Translate customer technical and operational requirements into SOWs, technical proposals, and customer-facing deliverables.
• Manage technical security projects by defining milestones, aligning stakeholders, and ensuring timely delivery.
• Support presales and delivery activities by producing high-quality presentations and assessment reports incorporating customer feedback.

Qualifications

• 6+ years of experience in security operations, security advisory, or consulting, with hands-on exposure to offensive and defensive security and the ability to communicate complex topics to varied audiences.
• University degree in information technology, computer science, or a related field.
• Proven ability to quickly learn and apply new cybersecurity concepts in both presales and delivery engagements.
• Relevant professional certifications (e.g., CREST, CRTO, CISM, CISA, CRISC, CISSP, or equivalent).
• Strong written and verbal communication skills for technical and non-technical audiences.
• Professional proficiency in English.

Soft skills:

• Strong analytical skills to interpret and document customer requirements, including ambiguous inputs.
• Accountability for personal impact on project outcomes and proactive risk escalation.
• Ability to resolve customer and project issues efficiently.
• Ability to manage multiple priorities and perform under pressure.
• Ability to influence stakeholders and negotiate pragmatic outcomes.