Cyber Security Lead
Recruiter
Listed on
Location
Salary/Rate
Salary Notes
Type
Start Date
This job has now expired please search on the home page to find live IT Jobs.
OUTSIDE of IR35
Minimum Requirement:
The successful candidate will work primarily with an government agency, an executive
agency sponsored by the GOVERNMENT. The GOV are going through exciting and
wide-ranging changes changes, across multiple fronts. Work includes - migrating legacy services
to Amazon Web Services, modernising legacy applications, and building new digital services.
The successful candidate will be instrumental in providing Security support and guidance to the
Government
The essential skills and experience required are:
- Cloud services & technologies - Experienced in assuring and working with product teams
deploying and transitioning digital solutions into public cloud environments in an agile manner.
- Design secure systems - Designs and reviews system architectures through the application of
patterns and principles to reduce cyber security problems.
- Threat modelling and analysis - perform structured analysis of proposed or implemented
complex systems to identify likely cyber security problems. Propose realistic and pragmatic
mitigation's that address these problems, and work with the product / project team to implement
these effectively into their work.
- Enabling and informing risk based decisions - Works with risk advisers to advise and give
feedback. Advise on risk impact.
- Research and innovation - Able to advise on developments on security properties in
technology. Able to identify new technologies and design the use of these in the business
context.
- Specific technology and security understanding - Has knowledge of system architectures. Able
to understand and articulate the impact of vulnerabilities on existing and future designs and
complex systems, and is able to articulate a response. Has broad knowledge of a range of
systems but may specialise in one.
Desirable:
- Analysis - Able to apply the approach to real problems and consider all relevant information.
Applies appropriate rigour to ensure a full solution is designed and achieves the business
outcome.
- Understanding security implications of transformation - Can interpret and apply understanding
of policy and process, business architecture, and legal and political implications in order to assist
the development of technical solutions or controls.
As a Cyber Security Consultant, you help others within the Digital and Technology team, as well
as the wider Government, to build secure solutions. You advise technical teams on cyber security
decisions. You help them deal with risks effectively. You do this by working with them as they
design and implement effective controls and mitigation's. This means you get involved and
embedded in projects and products early, assist with threat modelling activities, and provide
advice about appropriate and pragmatic security. The goal is to enable business outcomes. Your
approach ensures that common problems are addressed in reusable ways.
You work alongside Cyber Risk Advisers, helping the business understand what risks to manage,
how to prioritise investment decisions, and to recognise the importance of different data sets in
various business contexts. You support the GOV Security Engineering and Operations teams,
helping keep systems secure while in development and then when they go live. You deal with
incidents, and apply insights from security issues observed in products, systems, services from
across government and industry. This knowledge is applied to development and live systems, to
help us stay better protected now and in the future.
You'll be a recognised specialist in securing digital services. But you'll also have wider knowledge
and experience of enterprise technology and line of business applications. This gives you a good
understanding of the subtleties of designing, implementing and operating organisational systems
securely.
The Cyber Security Consultancy team focuses on providing professional and experience-led
advice. We emphasise aspects such as identifying and applying recognised good practices, such
as those provided by the National Cyber Security Centre. We take account of contextual nuance.
The work moves from the older accreditation models, such as the deprecated IS1&2 standards.
Instead we enable assurance, valuing good advice and practical application over control lists,
advocating meaningful controls over rigid compliance.
The successful candidate will work primarily with the Government, an executive
agency sponsored by the Government. The Gov Department are going through exciting and
wide-ranging changes changes, across multiple fronts. Work includes - migrating legacy services
to Amazon Web Services, modernising legacy applications, and building new digital services.
The successful candidate will be instrumental in providing Security support and guidance to the
GOV. To find out more about Computer Futures please visit www.computerfutures.comComputer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy | Registered office | 1st Floor, 75 King William Street, London, EC4N 7BE, United Kingdom | Partnership Number | OC387148 England and Wales