Consultant

The Opportunity

We are always interested in speaking to strong Consultants who can support our work across Data Protection, Information Governance and Information Security.

This is not a narrow advisory role. Our Consultants work with clients to understand problems, shape practical solutions, and deliver work that is clear, commercially sensible and genuinely useful.

You may have deeper experience in one area, such as GDPR, records management, ISO 27001, information risk, Microsoft 365 governance, DSARs, policy frameworks, assurance, or compliance programmes but you will be comfortable working across connected disciplines and learning where needed.

This role suits someone who can combine technical knowledge with strong consulting judgement: someone who can listen properly, simplify complexity, build trust with clients, and deliver work to a high standard without overcomplicating it.

Key Responsibilities:

Client Consulting \& Delivery

• Deliver client work across Data Protection, Information Governance and Information Security


• Support advisory, implementation, assurance and remediation projects


• Understand client objectives, challenges and risks, then translate these into clear actions


• Produce high\-quality deliverables including reports, assessments, policies, frameworks, registers, roadmaps, training materials and project documentation


• Provide pragmatic advice that balances regulatory expectations, good practice, commercial reality and client maturity


• Help clients move from problem identification to practical implementation


• Identify barriers, risks or delays early and work with clients and internal colleagues to resolve them


• Maintain clear project documentation, including status updates, actions, risks, issues and decisions


• Ensure work is delivered in line with agreed scope, timelines and commercial terms

Depending on experience, you may support work including:

• GDPR and UK data protection compliance reviews


• Data protection gap assessments and maturity assessments


• Privacy notices, policies and procedures


• Records of processing activities


• DPIAs, LIAs and data sharing assessments


• DSAR and rights request support


• Breach response and incident documentation


• Data retention, deletion and accountability frameworks


• Data protection training and awareness

Depending on experience, you may support work including:

• Information governance reviews and improvement plans


• Records management frameworks


• Retention schedules and disposal processes


• Information asset registers and ownership models


• Microsoft 365, SharePoint or document management governance


• File plan, taxonomy and metadata design


• Information lifecycle management


• Policy, procedure and control development


• Information risk and compliance reporting

• Depending on experience, you may support work including:


• Information security reviews and control assessments.


• ISO 27001 readiness, implementation or maintenance support.


• ISMS documentation and evidence management.


• Security policies, standards and procedures.


• Risk assessments and treatment plans.


• Supplier and third\-party risk reviews.


• Security awareness support


• Audit preparation and remediation activity


• Practical advice on security governance and control improvement

• Build trusted working relationships with clients at operational and management level.


• Communicate clearly, professionally and confidently.


• Act as a reliable point of contact for assigned workstreams.


• Challenge constructively where needed, while remaining practical and collaborative.


• Support long\-term client relationships by delivering work that creates visible value.


• Identify opportunities where Oyster IMS can provide additional support, escalating appropriately.

• Help turn repeat client needs into reusable consulting approaches.


• Contribute to templates, playbooks, standards and knowledge materials.


• Share learning across the consulting team.


• Support consistency in how work is scoped, delivered and documented.


• Look for ways to make delivery more efficient without reducing quality.


• Contribute to propositions, thought leadership or client\-facing materials where relevant.

• Understand the scope, assumptions and commercial boundaries of client work.


• Manage time effectively against agreed budgets and priorities.


• Escalate scope change or additional client requests early.


• Balance client service with commercial discipline.


• Support senior colleagues with scoping, proposals or follow\-on work where appropriate.

• Additional leave


• Company events


• Company pension


• Employee discount


• Employee mentoring programme


• Enhanced maternity leave


• Enhanced paternity leave


• Gym membership


• Health \& wellbeing programme


• Life insurance


• Private medical insurance


• Profit sharing


• Sick pay


• UK visa sponsorship

This listing is from indeed. View original listing ↗