
How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Security Design Consultant
Job Title: Senior Security Design Consultant Location: Manchester, Leeds and Bristol Hybrid mode- 2 days week (Work from client location) This is Fixed term contract role
Role Overview
We are seeking a Senior Security Design Consultant to provide expert cyber security consultancy, security design assurance and risk-based guidance across business and technology change. The role is responsible for assessing new and amended services, applications, cloud platforms and third-party solutions to ensure security risks are understood, controlled and aligned to organisational risk appetite, regulatory obligations and industry best practice.
Key Responsibilities
- Lead security design reviews, threat modelling and risk assessments for applications, infrastructure, cloud services and third-party solutions.
- Define and recommend proportionate security controls, patterns and design guardrails aligned to business objectives and risk appetite.
- Provide consultancy on secure architecture for internet-facing services, internal platforms, data flows and integration patterns.
- Advise on identity and access management, privileged access, recertification and access control design.
- Work closely with engineering, architecture, product and delivery teams in Agile and DevOps environments to embed security by design.
- Support compliance with security and regulatory frameworks including ISO 27001, PCI DSS, OWASP and internal standards.
- Review security posture of vendors and outsourced services, providing due diligence and third-party risk assurance.
- Present security findings, risk opinions and design recommendations clearly to both technical and non-technical stakeholders, including senior leadership.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Required Experience and Skills
- Extensive experience in cyber security, security consulting, risk assessment or security architecture within regulated environments, ideally financial services.
- Strong knowledge of threat modelling methodologies, secure design principles, attack vectors and mitigating controls across network, application and cloud domains.
- Practical understanding of cloud security, secure application delivery, third-party risk management and access management practices.
- Experience applying recognised frameworks and standards such as ISO 27001, PCI DSS, OWASP, NIST and enterprise security control frameworks.
- Ability to translate complex technical risks into business language and provide clear, evidence-based recommendations.
- Exposure to contemporary architectures. E.g. RESTful APIs and containerised microservices
- Strong stakeholder management, written communication and presentation skills, with confidence engaging senior managers and control functions.
Qualifications and Certifications
- Essential: Demonstrable experience in security design, cyber risk, security consulting or related cyber security disciplines.
- Desirable: Professional certifications such as CISSP, CISM, CCSP, CEH, GIAC or equivalent.
- Preferred background: Experience supporting cloud transformation, digital delivery, third-party assurance and regulated change programmes.
Desirable Attributes
- Commercially aware and able to balance risk reduction with pragmatic business delivery.
- Capable of working independently while influencing multidisciplinary teams and senior stakeholders.
- Understanding or awareness about banking systems
- Comfortable operating in fast-paced, high-pressure environments with changing priorities.
- Structured, detail-oriented and focused on producing high-quality, repeatable outcomes.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Success Measures
Success in this role will be measured by the quality and timeliness of security assessments, the effectiveness of recommended controls, stakeholder confidence in security advice, and the consultant’s ability to enable secure delivery without unnecessary friction to business change.
Benefits
- A supportive, diverse, and global team with a brilliant culture.
- Competitive compensation and benefits that includes up to 20 days’ vacation per year, various insurances like Term life and Business Travel insurance. These are apart from the statutory benefits applicable in the country. Employee benefits are regulated by an internal policy that contains full details regarding the entitlement and conditions for the benefits as per the law of the land.
- Great opportunities to make the role your own, upskill yourself and get involved with exciting projects.
- Total Wellbeing is our focus. Alongside your professional excellence, you join the likeminded colleagues to create a larger impact within the company and society at large in your chosen area of passion - CSR Council, Diversity Council, Women Connect, Sparks – Engagement Champion to name a few.
To know more about us visit – www.hcltech.com For more information on how we process your personal data, please refer to HCLTech’s Candidate Data Privacy Notice.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location