Information Assurance Specialist – Cybersecurity Expertise
Location: Surrey
Hudson Shribman Recruitment is seeking a highly skilled Information Assurance Specialist to lead the design and implementation of secure systems, ensuring the protection of critical data and infrastructure. This role is ideal for professionals experienced in cybersecurity, information assurance, and embedded systems, with a strong focus on FIPS compliance and advanced security measures across hardware and software platforms.
Key Responsibilities
Software Security:
Perform in-depth code reviews to identify and address security vulnerabilities.
Design and implement secure communication protocols for embedded systems.
Ensure encryption, secure boot mechanisms, and other cybersecurity measures are in place.
Monitor software systems for unauthorized access or malicious activity.
Hardware Security:
Embed security features, such as trusted platform modules (TPMs) and hardware encryption.
Test hardware for vulnerabilities, including side-channel attacks and backdoor exploits.
Ensure programmable logic devices are tamper-resistant.
Systems Architecture Security:
Define and document security requirements aligned with FIPS, NIST, and organizational goals.
Conduct risk assessments to mitigate potential threats to system architecture.
Integrate secure practices across software and hardware teams.
Proactively address emerging threats throughout the system lifecycle.
Risk Assessment and Incident Response:
Identify security risks across hardware, software, and systems architecture.
Develop and test incident response plans for breaches or system compromises.
Compliance and Standards:
Ensure compliance with FIPS, ISO 27001, NIST, and other relevant standards.
Maintain up-to-date knowledge of industry regulations across sectors like defense, aerospace, and critical infrastructure.
Security Testing and Validation:
Conduct penetration testing and vulnerability scanning across systems.
Validate security measures, including encryption, access controls, and COMSEC.
Experience & Skills Required
Technical Expertise:
Advanced knowledge of cybersecurity, cryptography, FIPS-140, embedded systems, and device security.
Expertise in tools for vulnerability scanning, penetration testing, and risk assessment.
Familiarity with SIP, AS-SIP, and assured communication services.
Collaboration and Leadership:
Proven ability to collaborate with software engineers, hardware designers, and systems architects.
Strong communication and leadership skills to drive secure design principles.
Qualifications:
Minimum of 5 years’ experience in information assurance, cybersecurity, or related roles.
Relevant certifications (e.g., CISSP, CISM, CEH) are highly desirable
apply to (url removed)
