Security Assurance Co-ordinator

IR35 status: Inside IR35. Candidates must operate via an umbrella company

Rate: £450 (rate payable to umbrella company)

Location: MOD Corsham / Hybrid working

Duration: 16 months

Deadline: 15:00 12th December 2022

Looking for an Interoperability Deployed Security Assurance Coordinator to work from Corsham as part of Defence Digital. Candidate must have a current SC.

Overview:

• To act as principal SA professional working closely with Service Manager/Service Stakeholders MSP/Authority SA governance to achieve accreditation and through life management of all live services Establish/Chair Security Working Groups Review/assess/address/evidence security controls Support live services with production of a formal document (maintained in line with policy standards and reviewed annually)

The Security Assurance Co-Ordinator (SAC)/ Security Lead (SL) will be the main focal point for all Security Assurance related support tasks; dependent on the business needs. Checks and balances must be maintained and monitored in accordance with policy and standards; supported by the production of a formal document set to achieve accreditation or Safe by Design and adhere to the MoD Secure By Design principles. ‘An approach that enables a culture of proactive risk management and appropriate security consideration throughout a capabilities’ lifecycle by connecting cyber security principles, roles, processes, tools and techniques to achieve secure systems.

Required skills and experience:

• A minimum of three years’ experience within the last five years in an Information Assurance (IA) role in a similar sized complex organisation (e.g., MOD) Able to provide a high- level plan to your approach for identifying/managing Security Risks, Issues and Dependencies in a mature business/project area Be able to provide Security Assurance documentation to enable an organisation to continue the route to full rollout and adoption of policies/templates within delivery areas Experience of conducting technical security reviews / approvals of Supplier Design and Test documentation to ensure that it is compliant with Security policy Experience of Security Accreditation and Security Assurance processes within a similar sized complex organisation Experience of Coordinating Technical security documentation to support the route to accreditation/accepting risks Certified Cyber Professional (CCP) – at least SIRA Practitioner level

Nice to have skills and experience:

• Certified Information Systems Security Professional (CISSP) Certificate in Security Management (CISM) Associate Member of the Chartered Institute of Information Security (CIISEC) Member of the British Computer Society Experience of ICT Projects in a similar sized organisation Knowledge of JSP440 & JSP604 Specific project experience such as cloud security, apps security

Candidates must be eligible to work in the UK.