Associate Security Consultant

Associate Security Consultant - This is your launchpad into ethical hacking

Cheltenham Office-based during probation then hybrid

The Opportunity

At NCC Group our incredible Technical Assurance division is looking for Associate Security Consultants to embark on a journey of growth and development. Kicking off on the19th of January 2026 you will be based in our Cheltenham office where you will work with and learn from some of the best minds in the industry.

This opportunity is available to candidates from various backgrounds and specialisms whether you are changing careers or looking to move into another area of Cyber Security. Our industry-renowned and awarded training program will teach you to perform web application security assessment network and infrastructure testing applied research consultancy skills and more.

You will propel your career and be on the fast track to becoming a full fledge Penetration Tester (aka Security Consultant). The wealth of experience and knowledge available to learn from is invaluable and can often lead to you finding interests in cyber security that you didnt know you had.

The challenge:

• Youll spend your first 6 months in our Cheltenham office engaging in structured learning a mix of guided classroom sessions 1:1 mentoring and self-paced modules
• Youll be paired with experienced consultants who guide your technical development and help you build consultancy soft skills from client communication to report writing
• Youll work through real-world scenarios using tools like Burp Suite Kali Linux and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches
• Youll observe live client engagements gaining exposure to different industries threat models and testing methodologies
• Midway through the programme youll deliver a graduation project; this could be a research piece a custom tool or a deep-dive into a specific technique
• Once trained youll begin contributing to billable client work supported by your mentor and line manager. Youll start with scoped tasks and gradually take on full engagements
• Regular check-ins and performance reviews throughout will ensure youre progressing technically and professionally with clear milestones and support.

Expected outcomes in your first 12 months:

• Deliver a graduation project that demonstrates technical depth and presentation skills
• On successful completion of the training you will sit an industry wide qualification (such as CRT or CSTM) before commencing billable client facing work.
• After gaining CRT or CSTM you will apply to NCSC for CHECK Team Member accreditation.
• Transition into client-facing delivery work with confidence and credibility
• Build a strong foundation in penetration testing and consultancy ready to specialise or broaden into other areas of cyber security.

A successful Associate

• Has a good level of English command both written and spoken
• Asks smart questions loves solving problems and showing initiative
• Communicates clearly with clients and colleagues
• Demonstrates curiosity and drive to learn continuously.

Youll bringgenuine passion for cyber security and ideally you will have some degree of experience or exposure inat least 3of the following:

• Pen testing web dev frameworks (React Flask etc.)
• Networking (TCP/IP routing/switching)
• Cryptography (applied PQC symmetric & asymmetric)
• OS internals (Windows Linux MacOS)
• Hardware testing including embedded systems firmware analysis or physical device security
• Programming (Python Java C# etc.)
• Cloud platforms (AWS Azure GCP)
• Security tools (Burp Suite etc.)
• Ethical hacking platforms (Hack the Box Catch the Flag Try Hack Me vulnhub Immersive Labs etc.).

About our company:

At NCC Group our mission is to create a more secure digital future. That mission underpins everything we do from our work with our incredible clients to groundbreaking research shaping our industry. Our teams partner with clients across a multitude of industries delving into securing new products and emerging technologies as well as solving complex security problems.

As global leaders in cyber and escrow NCC Group is a people-powered business seeking the next group of brilliant minds to join our ranks. Were committed to providing an inclusive and supportive work environment that fosters creativity collaboration authenticity and accountability. We offer a comprehensive benefits package opportunities for learning and development and career growth.

What do we offer in return

We have a high-performance culture balanced with world-class well-being initiatives and benefits:

• Flexible working
• Financial & Investment: Pension Life Assurance Share Save Scheme
• Maternity & Paternity leave
• Community & Volunteering Programmes
• Employee Referral Program
• Lifestyle & Wellness
• Learning & Development

So whats next

If this sounds like the right opportunity for you wed love to hear from you!Applications close on the 23rd of November.

Click Apply or send your CV and cover letter to

About your application

We review every application received and will get in touch if your skills and experience match what were looking for. If you dont hear back from us within 10 days please dont be too disappointed we may keep your CV on our database for future vacancies and encourage you to keep an eye on our career opportunities.

If you do not want us to retain your details please email All personal data is held in accordance with the are committed to diversity and flexibility in the workplace. If you require any reasonable adjustments to support you during the application process please tell us at any stage.

Please note:This role involves mandatory pre-employment background checks due to the nature of the work NCC Group does. To apply you must be willing and able to undergo the vetting process. This role will be subject toBS7858 screeningas a mandatory requirement.

Eligibility Requirements

This role may involve work on government-related projects requiring security clearance. As such applicants must:

• Haveunrestricted and permanent right to work in the UK(e.g. British or Irish citizen or settled/pre-settled status under the EU Settlement Scheme).
• Have beencontinuously resident in the UK for the past five years to meet the baseline criteria for Security Check (SC) clearance.

While not all projects require clearance the nature of the work means we can only consider candidates who meet these criteria. Unfortunately we are unable to offer visa sponsorship for this role.