SATCOM SECURITY TEAM RISK MANAGER
HYBRID WORKING (MOD CORSHAM)
SALARY NEGOTIABLE
My client are a UK-based Cyber Security consultancy who are working on a number of MOD projects focussed around Satcoms and due to continued growth and expansion, they are now looking for a Satcom Security Team Risk Manager to join them on a permanent basis.
Suitable candidates will need to be a Sole UK National, plus have a minimum of SC clearance, with a willingness to undergo the DV clearance process.
Knowledge, skills and experience:
Essential:
* Security Risk Management and Resilience experience.
* Information Security experience/certification.
* Strong Subject Matter Expert (SME) and Stakeholder Management skills.
* Experience presenting and chairing meetings (Teams and F2F).
* Customer and Client relationship management skills/experience.
Desirable
* Knowledge/experience of SATCOM and SKYNET as a system.
* Prior consulting experience.
* Experience working in a MOD/military environment.
* Knowledge of relevant MOD Risk Management literature and tooling (JSP 892, frameworks, Active Risk Manager (ARM), STREAM, etc.).
* Knowledge of Physical Security procedures and risk mitigation in relation to Defence CNI.
* Knowledge/experience with NIST Cyber Security and Risk Management Frameworks.
* Policy writing and review experience.
* Information Assurance experience.
Responsibilities:
* Delivering Risk Management processes in line with MOD requirements and the Risk Management governing SATCOM Security.
* Managing ownership of any given security risk.
* Establishing and managing entries within the SATCOM Risk Management Tooling.
* Maintaining working practices, scheduling and undertaking ongoing reviews and continuous monitoring of all security risks established within the SATCOM Risk Management process, including leading security risk forums.
* Identification or risks, and/or the endorsement of security risk identified by stakeholders.
* Assessment and evaluation of risks, and/or the endorsement of those raised by stakeholders.
* Treatment planning, and/or the endorsement of recommendation from stakeholders.
* Recommendation on acceptance and/or escalation within the SATCOM Risk Management process.
* Planning activities relating to the communication of risk, and where necessary, the consultation of risk externally to the Programme.
* Providing SME input at Programme-wide meetings/forums/working groups.