Information Security Assurance Consultant

Network Security Consultant/ Information Assurance - SC Cleared

Rate: £600-£650 Inside IR35
contract: 6 month contract (initially)
Locations: 2 to choose from - Bristol or Chippenham

Remote working: (2-3 days on site)

Minimum SC Clearance Required

This is an opportunity to play your part in protecting our company, our customers, and our communities from a cyber-attack. Be part of a growing dedicated Defence security team and get ready to make a difference by bringing your information assurance skills and experience onboard. You'll learn from those around you and from outstanding training and development resources to become even better at what you do. With the best technology at your fingertips, you'll be part of a friendly and flexible working environment where your contribution is always valued. Your future starts here.

What you'll do:
* Support the delivery of BT Security's services to our defence customer
* Help manage operational risk relating to people, information, assets, revenue, and reputation, to ensure compliance with relevant security requirements
* Implement cyber risk mitigation strategies in relation to our customer's business risk management
* Identify and mitigate security risks, completing problem-solving and proposing solutions for information systems and technology architectures
* Provide information assurance advice and security direction to defence stakeholders within BT and our external customer(s)
* Complete IT security risk assessments and compliance audits
* Support the delivery and maintenance of BT Defence ISO27001 certification
* Scope and complete security assessment & assurance of new customer requirements
* Be an ambassador for our company, our customers, and our team

You'll definitely:
* Already hold or be capable of achieving and maintaining the required security clearance (UKSV as a minimum)
* Have a proven track record in security and information risk management
* Be a SME of technical, physical, procedural, personnel and cryptographic security management
* Be experienced in working in major public industry sectors; Defence (MoD) and/or HM Government departments or agencies
* Have knowledge and experience of the following security standards - ISO27001, MoD JSP604, 440 & 490, NCSC
* Have experience scoping assurance tests and ITHC's
* Have experience or be capable of writing accreditation artefacts such as RMADS, SyOPs and CAMS reports
* Be experienced in communicating and influencing across all levels
* Be excellent at stakeholder management and be able to work with (and provide security support to) peer SMEs from other disciplines
* Have excellent attention to detail
* Be commercially aware

You might even:
* Be a NCSC Certified Cyber Professional (CCP) Information System Security Manager and/or Security & Information Risk Advisor
* Be a Certified Information Systems Security Professional (CISSP)
* Have NIST training or experience
* Be an ISO27001 Lead Auditor or Implementer
* Have experience applying information assurance to security architecture in communication and network environments
* Have knowledge about telecommunication systems and their underlying technologies
* Have an accreditation background
* Hold COMPTIA Security+ and/or COMPTIA Network+