Security System Design Authority

This job has now expired please search on the home page to find live IT Jobs.

The Security System Design Authority (SDA) is responsible for the coherence and assurance of the design activity for the entirety of the OpNet Platform. The primary focus of the Security Service is to advise and assure the OpNet design is conformant with civil and defence legislation relating to IT security, with a focus on how confidentiality, integrity and availability is achieved. This service reports directly to the SDA Lead. The Security Service's principle responsibilities include:

Support

* Acting as the point of contact for security architecture and threat mitigation on behalf of the SDA Lead.

* Interacting with programme, project, and engineering team leads to ensure cross team, cross technology coherence to satisfy the security requirements of the OpNet system.

* Supporting design vision creation, design decisions and design review as part of the end to end assurance process.

* Supporting Programme and Project Stakeholder engagement and RAIDO management specific to current and emerging security threats.

* Liaising with team leads across the Programme and wider defence digital organisations to ensure a robust solution is delivered within Time, Cost and Performance.

Design

* Identifying and communicating solution intent across programme teams and the SDA Lead, and support the review of all high, intermediate, and low-level designs for coherence, technical content, and quality.

* Align standards, frameworks, and security with overall business and technology strategy.

* Creating solutions that balance business requirements with information and cyber security requirements.

Assure

* Ensuring that standards, frameworks and security postures align with overall business and technology strategies and policies e.g. Defence as a Platform, Federated Mission Networking and JSPs.

* Identifying capability gaps in existing architectures and recommend changes or enhancements in line with Agile and continuous improvement methods.

Essential skills, qualifications, and experience

In order to deliver this service, it is essential that individuals have:

A minimum of 10 years demonstrable experience in the following:

* Architecture and development of secure Hardware and Software solutions with successful delivery on complex, large scale programmes utilising emerging technologies where possible.

* Strong Security Engineering background with experience working with an Engineering team to ensure compliance.

* Operating both as a Security Engineer and Security Architect.

* Detailed knowledge and understanding of JSP 440, 604 and over-arching HMG policy.

* Security architecture, demonstrating solutions delivery, principles and emerging technologies.

* Designing and implementing security solutions. This includes continuous monitoring and making improvements to those solutions, working with an information security team.

* Consulting and engineering in the development and design of security best practices and implementation of solid security principles across the project to meet business goals along with customer and regulatory requirements.

* Identity access management (IAM) - the framework of security policies and technologies that limit and track the access of those in an organization to sensitive technology resources.

* An understanding of Defence Lines of Development and Defence Capability Integration.

* Comprehensive knowledge of UK Defence deployed network architectures, federations with coalition partners, security enforcing gateways and modern techniques for enforcement of security principles including micro-segmentation, VPN, VDI, hardware encryption and information flow handling.

* Experience in reviewing engineering designs and enhancing security solutions against business requirements and Industry Best Practices.

* Experience in delivering to a least privilege security model.

* Competency in MS Office Suite.

* Hold a current SC clearance and be prepared to undergo a higher level clearance.

Desirable skills, qualifications, and experience

In order to deliver this service, it is desirable that individuals have:

* Knowledge and experience with Audit tooling such as Splunk and SolarWinds.

* Knowledge of Cloud and/or Datacentre based Security Architectures.

Experience of:

* Working within the public sector, preferably Defence.

* Performing Vulnerability Assessments against secure networks and systems.

* Production of Risk Management & Accreditation Document Set (RMADS).

* Delivering in Agile and Waterfall project management environments delivering of software-based programmes and projects.

Security related qualifications, such as:

* Certified Information Systems Security Professional (CISSP),

* Certified Information Security Manager (CISM),

* Certified Information Systems Auditor (CISA),

* Information Systems Security Architecture Professional (ISSAP)

* Information Systems Security Engineering Professional (ISSEP)

* CCP SIRA Certification at Practitioner or above,

* ISO27001 Auditor related qualification.

Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 18 weeks.

LA International Computer Consultants Ltd is an HMG Approved Consultancy and operates as an IT & Engineering Consultancy or as an Employment Business & Agency, depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, we welcome applications from all sections of the community and from people with diverse experience and backgrounds.

Award Winning LA International Computer Consultants Ltd (Recruiter Awards for Excellence - Best IT, Best Public Sector & Gold Awards) and the most prestigious award that any business can receive The Queens Award for Enterprise: International Trade 2015.