Cyber Security Consultant / IA Consultant

Cyber Security Assurance Consultant / IA Consultant - Nr Reading - Inside IR35 - £600 - £700 per day - 6 months +
DV Cleared role, Candidates must hold a current DV level security clearance

Overview
As Cyber Security Assurance Consultant / IA Consultant is part of the Security Assurance Team (SAT), providing risk management and assurance of programme artefacts. The roles principally includes security manager on programmes of work collaborating across enterprises to produce end-to-end security solutions. Additional roles will also include the delivery of security training and content and supporting the promotion of a positive security culture. The role requires close collaboration with Security Architects, Testers, Engineers and senior stakeholders to achieve the balance between delivering security assured products and supporting speed of delivery. Reports to Security Lead; day to day work is managed by allocated team Scrum Master.
Responsibilities and Tasks

• Support delivery of secure Releases and Features aligned with the relevant legacy or NIST assurance processes through Security Assurance stories agreed with nominated team Scrum Master
• Create security assurance case for releases, including risk assessments and mitigations for identified defects and vulnerabilities
• Liaise with Testers, Security Architects and Engineers to ensure smooth assurance process and timely delivery of contribution to assurance cases.
• Define Penetration Test and IT Health Check (ITHC) scope for relevant team
• Liaise with Joint Design Team on scope and submission of assurance case
• Keep Security Lead informed of progress within team and of any potential conflicts where Security Assurance issues may impede delivery
• Provide security approval for service support activities, including IMPEX to various systems
• Conduct daily checks (as part of rota) as required on nominated systems
• Support incident investigation and security training and briefings
• Support development of relevant security documentation; including RMADS, CoCo, RAR, SSP, POAM, OSMP (including SyOps).
• Where delivery priorities permit, support the provision of Authority services when Authority is unable to provide such services
• Propose Risk Register entries to the Security Lead or Security Assurance Lead as required to agree areas of residual risk with the Authority
• Escalate relevant security issues via the Security Lead or Security Assurance Lead for resolution at the security working group

Knowledge, Experience and Capabilities

• Cyber Security Assurance
• ISO27001
• NIST 800-53 series
• MOD Secure by Design
• Information assurance
• Risk management
• High quality of written and verbal communication skills
• Experience of working in Secure environments (Highly desirable)
• Experience in Safe Agile methods (Desirable)

Key skills
Compliance
Security Architecture
Security Assessment
Security Audit
Cyber Security Assurance Consultant / IA Consultant - Nr Reading - Inside IR35 - £600 - £700 per day - 6 months +
DV Cleared role, Candidates must hold a current DV level security clearance

#J-18808-Ljbffr