Contract until End of March 2025 Inside IR35 SC Cleared Anson McCade are seeking are seeking a skilled IT Security Controls Specialist to work within our client’s environment to enhance security and reduce the attack surface of their IT infrastructure. The role focuses on restricting unauthorized software and add-ons on approximately 10,000 Windows end-user devices, leveraging the client’s existing Microsoft, Azure, and Splunk tools. The successful candidate will evaluate options, design solutions, and oversee their testing and deployment into production while maintaining flexibility to adapt to evolving requirements. Assess and validate current restrictive mechanisms (e.g., .exe files, MSIx files, MS Store). Evaluate the client’s existing infrastructure and tools to identify mechanisms for applying restrictions. Review and validate the client’s Acceptable Use Policy (AUP) to determine actionable restrictions. Collaborate with stakeholders to define what constitutes appropriate and restricted software for end-users. Engage with the client’s change processes, including participation in Change Advisory Board (CAB) reviews. Collaborate with senior leadership and technical teams to gain approval for proposed changes. Develop controls to restrict application and add-on installations. Design and implement additional supporting security controls as needed. Participate in review and assurance processes with key client stakeholders. Help establish and manage a small, representative user group for pilot testing. Implement and test changes within this group, iterating as required based on feedback. Plan the deployment of solutions into the production environment. Lead the change management process, including CAB approval. Execute production rollouts, ensuring monitoring, stabilization, and user adoption. Document solutions thoroughly and transition support to BAU teams. Required Experience: Technical Expertise: Proven experience designing, configuring, testing, and deploying security controls on large-scale Windows environments (circa 10,000 devices) using Microsoft and Azure tools. Splunk Proficiency: Familiarity with Splunk for monitoring and analysis. Change Management: Experience navigating technical changes through structured processes, including CAB reviews. Communication Skills: Strong interpersonal, verbal, and written communication skills for engaging with stakeholders at all levels. Documentation & Reporting: Ability to create high-quality documentation, reports, and test plans. Planning and Organization: Skilled at workload prioritization, multitasking, and delivering results under pressure. Problem-Solving: Flexibility and adaptability to manage evolving project requirements.