Log In Sign Up

Security Assessor

Premium Job From Experis IT

Recruiter

Experis IT

Listed on

5th July 2018

Location

Southend-On-Sea

Salary/Rate

£500 - £565

Type

Contract

Start Date

ASAP

This job has now expired please search on the home page to find live IT Jobs.

Role: Security Assessor

Start Date: ASAP

Location: Southend

Duration: 2-3 months

To be effective the successful security consultant will be familiar with a range of digital/web services and solutions, ideally where open source and cloud technologies have applied agile development methodologies. The consultant will also be able to rationalise complex information to make it understandable for others to work with.

It is essential that they have experience of working in large and complex programmes, where business transformation is equally as important as IT change. The ability to work independently, proactively and with versatility in responding to changing circumstances is essential. The candidate will need an eye for detail, excellent communication skills and be able to interrogate reported information and challenge sources where inconsistences are found.

Experiences and skills include:

* Risk assessment experience and using agile methodology. You will need to develop a close working relationship with the Security team members who will be providing assurance as part of the accreditation process.

* Experience of cloud-based technology, DevOps processes and ongoing support models.

* Act as a security consultant in the development of the solution, instilling security best practice as the solution unfolds. Write pen testing scopes and interpret results; contextualising them, providing risk treatment suggestions and reassessing as appropriate

* Ability to deal with complex projects, to assimilate and prioritise information, with security at the heart of enablement. In order to do this, you will need to be able to integrate into the core team, and if inconsistencies appear challenge these and suggest pragmatic alternatives

* Ability to work independently, proactively and with versatility to changing circumstances

* Excellent eye for detail, communication skills with individual as all levels, and the ability to coach, as part of the role will be to affect a skills transfer.

The key responsibilities of the assignment are to:

* Attend discovery and requirements meetings (including Agile "Sprint" meetings) alongside business representatives as subject matter expert in security risk management.

* Identify key information and security risks that need to be mitigated as part of the solution design and each of the Agile Sprints containing high priority developments;

* Define the scope for security testing as required and support embedded security and security testing practices

* Produce risk management documentation - specifically

* Security Risk Assessment

* Statement of Applicability

* Portfolio of evidence

* Transfer skills and knowledge to nominated in-house staff

* Must have experience of working in major public sector IT change programmes

* Experience of cloud based solutions and DevOps processes.

* Familiarity with Agile programme management delivery processes and integrating risk assessment practices.

* Previous experience of designing and successfully delivering service security testing (including penetration testing) in a complex IT change environment.

* Strong communication and interpersonal skills.

The ideal candidate will be SC cleared or eligible and willing to undergo the relevant checks

Please submit CVs in the first instance

You are currently using an outdated browser.

Please consider using a modern browser such as one listed below:

Google Chrome
Google Chrome
 Opera
Opera
 Mozilla Firefox
Mozilla Firefox