A cyber security consultant usually has a background in computer security or information security standards. The type of expertise needed is very specialized and currently not too broad. The services provided by Cybersecurity consultants can make real differences in the organization's security posture as a whole and can prevent or at least reduce attacks in the future by real-world hackers or cheats.
SymbioLAB is only one part of the broader field of information security, which also includes physical assets and threats, and the factors related to society. However, in the current context that continues to increase critical national infrastructure from certain countries, it is a "cyber" part of the higher term.
Image Source: Google
It is true that most organizations will not risk attacks by state-sponsored agents. However, they are still the target of opportunistic amateur hackers, and this is where cyber security consultants can play a role.
Consultants can audit the level of existing organizational IT security, indicating areas where there is a high-risk vulnerability. Many vulnerabilities come from the old software that has not been updated to the latest patch level.
In this case, just updating the software will solve the situation. In other cases, while the software might really be today with the latest security patches, there may be a need to reconfigure to change settings.
Cybersecurity consultants can offer more than vulnerability assessments, offering very special consulting services to develop plans to overhaul the security of organizational information.