Alexander Mann Solutions - Public Sector Resourcing
10.12.2024
On behalf of Sellafield, we are looking for a Cyber Security Architect (Inside IR35) for a 12-month contract working remotely with occasional travel to Cumbria.
Work at Sellafield Ltd, and you're not just building a career. You're embarking on a mission. Joining 11,000 people on a 100-year project transforming the Sellafield site for all the generations that follow.
In this position, you will support Sellafield Ltd. with understanding and quantifying Cyber Risk, advising control mitigations, and working with business stakeholders to address cyber risk as part of continuous risk management.
As a Cyber Security Architect, your main responsibilities will be:
1. Formal risk assessment of Sellafield Ltd systems (IT/OT), applications, and cloud environments.
2. Providing control recommendations and advisory services to business stakeholders.
3. Production of risk reports and metrics.
4. Recommending architectural design principles aligned to NCSC guidance and best practice.
5. Assisting with continuous cyber risk management and assurance as part of a layered defence approach.
Essential:
1. Qualified to a minimum of degree level in a relevant discipline (e.g., Cyber Security, Systems Engineering, or Computer Science).
2. Qualified as a Chartered Cyber Security Professional (ChCSP) or possess equivalent level of knowledge and experience within one of the following specialisms: GRC | Secure Systems Architecture | Auditing & Assurance.
3. CISSP/CISM or equivalent certification(s) within information security.
4. Experience within Cyber Security Governance, Risk, Compliance & Assurance.
5. Experience of working in a highly regulated environment.
6. Knowledge and use of applicable security standards.
7. Knowledge of Cyber Security models and frameworks (i.e., CAF, NIST RMF, Mitre ATT&CK, ONR Security Assessment Principles).
8. Knowledge and experience of security architecture principles.
9. Thorough knowledge of Cyber Security risk assessment methodologies.
10. Experience of working alongside operational cybersecurity teams.
11. Solid understanding and knowledge of ICT systems.
12. Good communication skills across all levels of the business with the ability to articulate recommendations to technical specialists and non-technical senior stakeholders.
13. Excellent problem-solving skills.
14. Self-motivated with high levels of resilience, honesty, and integrity.
Desirable:
1. Background in Security Architecture advisory.
2. Solid understanding and knowledge of OT systems.
3. Experience of CSA CCM v3 cloud security controls.
4. Demonstrable experience within cloud security architectural design.
Please be aware that this role can only be worked within the UK and not Overseas.
Sellafield Ltd is committed to eliminating discrimination and encouraging diversity amongst its workforce.
Disability Confident:
As a member of the Disability Confident Scheme, Sellafield guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy.
Armed Forces Covenant:
Sellafield guarantees to interview veterans or spouses/partners of military personnel who meet all the essential criteria for the vacancy.
In applying for this role, you acknowledge the following: this role falls in scope of the Off Payroll Working in the Public Sector legislation. Any rates of payment quoted will reflect the gross rate per day for the assignment and will be subject to appropriate taxes and statutory costs.
#J-18808-Ljbffr