Information Security Specialist - Multiple locations
£36000 - £51000 per annum + + excellent benefits
9 months ago
Information Security Specialist
Security Accreditation; Security architecture; Security through-life; ICT, OCT, ICS
RMADS; NIST; ICT; OCT; ICS; JSP440; JSP604; ISO27000
Defence & Maritime projects
Multiple locations available - Bristol, Frimley, New Malden, Portsmouth, Weymouth, Hull
£36,000 - £51,000
We serve and protect those who serve and protect us. Attracting and retaining the sharpest minds is essential for a globally competitive Business. Our aim is to recruit the very best talent. We want to be the leading employer in defence and security for valuing diversity and inclusion. We care about difference in all forms and want to create an inclusive environment where everyone can be themselves and reach their full potential.
Are you able to manage the Security Accreditation of a programme at varying points in the lifecycle? Can you ensure products meet Information Assurance requirements and that Security Risks are reduced to an acceptable level? Would you like to work with advanced technologies to minimise the risk of both cyber threats and social attacks?
Your main responsibilities as an Information Security Specialist will involve:
Designing and shaping the technical security architecture of strategically important products to ensure they are secure by design.
Liaising with the system accreditor(s) and stakeholders to manage expectations, ensure that security requirements are met and the security risk is reduced to acceptable level.
Determining security principles for the project solution to work within.
Producing accreditation artefacts such as product security architecture and Risk Management Accredited Document Set - (RMADS) in support of accreditation. Collecting evidence for the security case.
Responding to security questions within bid proposal documents, producing estimates, and selecting security principles and frameworks.
Contributing to the wider Product Security Department - delivering awareness material and presentations and speaking at Special Interest Groups, improving processes.
Your skills and qualifications as an Information Security Specialist:
Experience in ensuring security within complex networked systems.
Fundamental understanding of ICT, OCT and ICS technologies, how they connect together, different protocols, operating systems and applications.
A good understanding of National Technical Authority suggested Security Frameworks and Methodologies.
Good technical understanding of systems and how their security aspects are applied and affect performance.
Ability to identify and investigate technology to understand security vulnerabilities and how to mitigate them.
Solid systems engineering experience and background.
Understanding of Virtualised systems (Exposure to VMware products).
Exposure to securing thin or zero client environments.
Good knowledge and understanding of security risk assessments and RMADS (Risk Management Accredited Document Set) and the accreditation process.
Familiarity of Defence Standards/Security Regulations such as JSP440, JSP604 or, other security standards such as ISO27000 and NIST.