Provide security assurance and consultancy for government clients, focusing on governance and secure business system management.
Responsibilities
- Advise government clients on security management, governance, and practical solutions for complex security issues.
- Collaborate with design, implementation, and operational teams to ensure secure service operation.
- Gather security assurance evidence and utilize automated test tooling and STRTEAAM to create and maintain authorization packages.
- Manage security risks through audits, vulnerability management, and assessment of security test activities.
- Support business development by assisting with bids and proposals.
Required Skills
- 5+ years of experience in cyber security.
- In-depth knowledge of government security standards including NIST, CEF, Cyber Essentials, and Cyber Essentials Plus.
- Strong understanding of ISO27001 standards and the ISM.
- Proven experience in risk management and vulnerability management.
- Technical proficiency in security audits and security test tooling.
- CISSP certification.
- Ability to represent technical solutions at a senior stakeholder level.
- Experience delivering security against specific project expectations and industry best practices.
Preferred Skills
- Experience with patch and vulnerability management governance.
- Understanding of SOC/SIEM delivery and reporting actions.