My client is looking for an Information Security Manager to join the defence team and liaise with the MOD authority. Due to the environment candidates with current SC clearance or able to achieve this level can only be considered What you will be doing: Provide support and advice regarding Product and Information security risks for programmes/ systems in line with government policies and procedures. Liaise with the MoD authority to support in the assurance of information systems. Key Accountabilities: · Provide Information and Product Security advice and support to complex defence programmes to ensure contract security requirements are met. · Produce security artefacts including, Security Accreditation Document Sets, Security Management Plans (SMP), SyOps and manage other supporting security documentation where necessary to assure customer deliverables to the highest standard · Develop and implement information governance and risk management structures, policies and processes, including Infosec risk management within projects and BU areas to optimise Product Cyber Security Resilience (PCSR) · Manage other supporting security artefacts for numerous interlinked systems; working with system engineers to prepare for the accreditation; organising security testing of systems and liaising with the accreditors to enable project/programme execution. · Identify security risks within complex information systems and develop effective and risk balanced security measures to mitigate them. · Advise on and manage the application of the Defence Cyber Protection Partnership (DCPP) and other relevant standards and policies to ensure supply chain security assurance. · Liaise with customers, accreditors, and technical authorities, including attendance at Security Working Groups to enable project/programme execution. · Perform security analysis of operational environments, threats, vulnerabilities and internal interfaces to define and assess compliance to accepted industry and government standards. · Assist in the integration of PCSR activities with the system engineering, designing and manufacturing elements of new business ventures and projects/programmes to ensure acceptable and balanced information security solutions. · Develop business and user focused security policies, procedures, processes and operational guidance for the compliant delivery of customer information security requirements. · Conduct information security audits throughout the business and subsidiary companies against MOD and other regulatory requirements. Benefits : Excellent salary and package on offer – please apply for more information.