Cyber Security Assurance Specialist
Scotstoun, Glasgow
6 months
£83.20ph inside IR35 / Umbrella
Role Description
1. Cyber Security gap analysis
2. Cyber assessment / auditing
3. Working with system owners and business owners to articulate cyber security requirements
4. Understanding different IT and OT technologies to effectively audit various systems
5. Experience with defence, government, MOD, or highly regulated sectors like finance and medical
6. Familiarity with standards such as NIST, ISO27001, Cyber Essentials
7. Delivering cyber assurance services for the Naval Ships business, covering Enterprise Applications and Operational Technologies
8. Conducting risk assessments of gaps
9. Providing documentation to demonstrate compliance to internal and external stakeholders
10. Assessing and providing control effectiveness in managing cyber security risk
11. Working with security architecture and providing technical input into the development of secure solutions
12. Supporting the development of strategy and continual service improvement for the Cyber Assurance function
13. Acting as a subject matter expert regarding Cyber Assurance activities for the wider organisation
Core Duties
1. Check that all systems comply with global cyber standards
2. Understand the requirements for systems to be considered secure
3. Assess each system against the standard, identify non-conformities, conduct risk assessments, and collaborate with business owners to generate plans
Knowledge, Skills and Qualifications
1. Industry knowledge of cyber security standards and/or government cyber security standards
2. Cyber Assurance / Assessment / Auditing experience of IT Systems
3. Knowledge of IT application, infrastructure, and security technologies
Skills
1. Proactively engage with system owners to assess their systems
2. Ability to interpret system compliance with IT Security Standards
3. Risk management experience
4. Ability to work autonomously and manage workload and priorities based on demand from multiple projects
Preferred Qualifications
1. CISSP/CISM/CRISC
2. ISO27001 Lead Auditor
3. Cyber Essentials scheme (Ideally looking for a lead assessor)
#J-18808-Ljbffr