SC Security Project Manager/IA Consultant
Recruiter
Listed on
Location
Salary/Rate
Salary Notes
Type
Start Date
This job has now expired please search on the home page to find live IT Jobs.
SC Security Project Manager/IA Consultant - Hursley - 3-6 Month Contract
My client, a large technology and outsourcing organisation are looking for a number of Security Project Managers to be based from Hursley and provide services across a number of Public Sector accounts they work on, which will involve some travel. The roles will be initially 3-6 months and can offer a competitive daily rate.
Role Background:
* To work alongside Technical and Business Stakeholders Teams in producing and/or maintaining documentation relating to Proposals, Architecture, Policies, Guidance, System Operating Procedures (SyOp's) and Accreditation or Risk assessment documentation.
* To review, challenge, influence and advise the business and Architecture teams on achieving a balanced Solution that is within stakeholders risk appetite.
* Recommend solutions to stakeholders to improve business capability, efficiency etc. over the medium and long-term.
* Conducting technical security reviews of low level designs and proposed solutions.
* To scope and specify IT Health Checks / Penetration Tests.
* Advising on and implementing:
* HMG Policies (the Security Policy Framework and its supporting documents)
* HMG Standards (such as Information Assurance, Risk Management, Accreditation, Cryptography, etc.)
* NCSC Guidance (including Good Practice Guides, Developers' Notes, Security Procedures, etc.)
* Risk Assessment and Management, which provide evidence of adequate risk management to accreditors.
* Interconnections and Code of Connection compliance
* Security Management Plans and enforcing them
* ISMS implementation
Required Skills:
* Proven experience (minimum of three years) working as an Information Assurance professional within a Public Sector environment.
* Able to provide a level of technical expertise commensurate with that of a CCP (CESG Certified Practitioner) consultant combined with an in depth working knowledge of the controls contained within the HMG Security Policy Frameworks and good Practice Guides.
* Experience with applying ISO 27001 Information Security Techniques and developing Information Security Management Systems (ISMS)
* Detailed working background in IT with demonstrable experience resulting in a high-level of understanding of the application of IT Security and Information Assurance principles within a diverse business environment.
* CESG Certified Practitioner (CCP) Security & Information Risk Advisor (SIRA) - Senior Practitioner Level Preferred
* CISSP or CISM or equivalent
* Lead ISO27001 Auditor or Implementer
* CESG Certified Practitioner (CCP) IA Architect - Senior Practitioner Level
* Candidates should also hold an active SC Clearance or be eligible and willing to undergo the process.