Cyber Security Information Assurance Consultant

Job Role: Cyber Security Information Assurance Consultant

Location: UK Remote

Rate: £750 per day inside ir35

Contract: 6 Months+

SC security clearance is required for this role & NPPV2 is desirable

I am recruiting a Cyber Security Information Assurance Consultant for a client of mine who are a systems integrator working on a secure government project. Please see below for further details:

Key Responsibilities

  • Responsible for information security risk management and reporting
  • Liaise with subject matter experts and represent SSCL on government and industry forums
  • To assess and manage information risk from external parties engaged
  • Responsible for ensuring the implementation and delivery of information security, in line with published strategy, policy, and industry good practice (e.g. NCSC Cloud Security Principles, ISF Standard of Good Practice or ISO/IEC27001)
  • Ensure compliance with relevant legislation, regulations, standards and industry good practice including GDPR, DPA18, PCI/DSS, ISO/IEC 27001
  • Develop and define security policies, standards, procedures and guidelines in line with industry good practice and certification requirements (e.g. ISO/IEC27001)
  • Responsible for risk management relating to information security, being the primary escalation point for information assurance and risk related matters within the business
  • Awareness of Security Architectures and Technologies to support the reduction of information risk by the business
  • Day-to-day management of the Information Assurance function
  • Provide effective people management and leadership to the Information Assurance function

Essential Cyber Skills & Experience

  • Highly experienced security professional who is a security subject matter master and must have a security certification (e.g. CISSP, CISM, CCP,CRISC)
  • Proven ability to lead a team of security professionals to deliver enterprise strategies and solutions
  • Strong financial, commercial and leadership skills
  • Ability to define and analyse corporate security requirements and advise management on scope and options for business and operational improvements
  • Ability to present complex technical information to both technical and non-technical audiences.
  • Experience of implementing - information security risk management methodologies, management and assessments