Cyber Security Consultant

Cyber Security Consultant

6 month contract

Inside IR35

4 days a week remote - 1 day a week onsite

Based in Leatherhead

*Please note this is an SC Cleared role

Job Description

Provide suitable security resources to perform the tasks listed below up to a level of effort equivalent to 0.5 FTE Sr Security Architect for 18 months.

SECURITY DESIGN ASSURANCE:

• 
  Validation that systems, hardware, and software meet the security requirements

• Contributes to evaluation of security effectiveness

• Guiding ESSP in scoping penetration testing as well as IT Health Check

• Appraise ESSP about security training for their user community

• Will act as a intermediator and will help ensuring that appropriate security

• principles and best practices are used

• Will be able to assist ESSP in identifying tools like SIEM as well as Vulnerability Management

• Identification of vulnerabilities for final Security Risk Assessment

• Precise requirements for verification, validation, and evaluation of the technical countermeasures, including the schedule for this work and requirements for corrective action require approval for the Certification.

• Help in establishing following processes,

• Governance, Security Operating Procedures

• System Level Assurance

• Component Level Assurance

• Validation that a secure solution has been implemented

• Implementation is according to the agreed design

• Validation that the security controls are achieved with ISO27000

• will work with ESSP to achieve their Risk Management objective by:

• Identifying the prioritise security practices using ICE standard

• Validation process for compliance with ISO27000 security controls

• Validation of Risk Management Process to define acceptable risks

• System threat modelling for data flow between different domains

Compliance assessments:

• Along with ISO27000 CGI will help ESSP to prepare for overall compliance procedures