About the job
We currently have an exciting opportunity for a Security Assurance Specialist to join our existing experienced team.
What do we look for in a Security Assurance Specialist?
We are powered by brilliant people. As a Security Assurance Specialist, you will be able to demonstrate a knowledge of the following:
We are looking to recruit an Information Assurance / Security Architect Specialist to join us on fast moving, innovative and influential work that is underway in the Defence and Security Sector. As a Security Architect / Information Assurance Specialist in a cutting-edge technology environment, you will have a challenging, vastly interesting, and technically diverse role.
Key Responsibilities and Tasks
1. Risk Management within a Defence and Security Sector;
2. Security / Cyber architectures are proportionate to the GSC of the systems;
3. Apply security design specifics to develop the security architecture;
4. Strategic direction of Security projects;
5. Managing security risk for projects;
6. Producing evidence to meet various MOD regulations;
7. Designing options and solutions to mitigate vulnerabilities;
8. Understanding the security implications of bringing cutting-edge technology to government;
9. Working with various teams across the business including Software Engineering, DevSecOps Engineering, Infrastructure Engineering, Agile and Cyber Security;
10. Either holds or has recently held government security clearance already, or is suitable for and willing to go through the vetting process (suitability would include an absence of a serious criminal record, must be a UK national with a record of 5 years' UK residency).
Experience (Essential)
1. Experience of working on risk assessments using industry approved methodologies (such as NIST, ISO 27005).
2. Identification of suitable risk management activities (technical, physical, or procedural) to treat / mitigate the identified risks;
3. Creation of security documentation to support the development of an information system, these could include: security Aspects, Risk Assessment, Risk Management, Security Policies, Security Test Plans/Results, Evaluation documents;
4. High standards in written report and/or design documentation.
Experience (Nice to have)
1. Support development in a secure by design methodology;
2. Be able to work at a technical level with teams;
3. Identification / design / selection of appropriate security components to provide security enforcing functions (e.g. network, endpoints, cryptography, authentication, authorisation, data inspection etc) for a variety of infrastructures including cloud environments;
4. Legal and regulatory topics that merit consideration when conducting various activities in the field of cyber security;
5. Knowledge of MOD policies (JSP 440, 604, 892)
6. Knowledge and experience of Agile, DevSecOps, CI/CD principles and their application in secure environments;
7. Appreciation of the constraints and requirements imposed on development within secure, safety critical environments;
8. Concepts and technologies that are used to engineer systems which inherently protect systems;
9. Understanding of MOD and other departmental IT in defence and security;
10. Experience of working with MOD Accreditors;
11. Knowledge of Onsite / project tech stack includes but is not limited to Azure, AWS, Docker, Kubernetes, Apache (NiFi, Kafka), NodeJS, Typescript, MongoDB, AI, Machine Learning etc.
About SiXworks
SiXworks is a leading provider of secure digital solutions, specialising in digital experimentation and focused on fail-safe-fast cutting-edge technology solutions deployed in highly secure environments. We are unified in our mission to accelerate innovation and adoption of secure, digital technology to improve the operational agility of Defence and National Security. This is an exciting time for us, we have ambitious plans for continued growth and development, and we are seeking to add brilliant, experienced, motivated, and passionate people to our team to work with us on this journey.
Why join SiXworks?
Our team is a fusion of brilliance, featuring senior operational, technical, and business leaders from various industries and the armed forces. We're also powered by a league of extraordinary IT engineers, architects, developers, and project managers. Together, we're an unstoppable force of digital innovation!
SiXworks' expertise includes Secure-by-Design, cloud computing, advanced network and infrastructure design, rapid application development, cross-security domain systems, multi-tenanted High-Performance Compute, multi-source data platforms, cyber vulnerability mitigation, and intelligence systems. We provide supplier-agnostic, technical, and business consultancy to customers while championing open-source and best-of-breed technologies.
What can we offer in return?
SiXworks offers a unique work culture around our core principles Agility, Security, Innovation, Quality, Collaboration and Inclusivity. Together, these six principles form SiXworks'NORTH STAR, guiding the organisation towards success. This is reflected in the raft of benefits available to all our employees.
In addition to a competitive salary, we offer:
1. 25 days annual leave + bank holidays.
2. Private Medical Insurance.
3. Life Assurance Scheme.
4. Contributory pension scheme.
5. Professional Development opportunities.
6. Cycle to Work scheme.
7. Perks at Work scheme.
8. Contributory company pension.
9. Discretionary Bonus scheme.
10. Secure, on-site parking, cafe, restaurant, and gym facilities.
11. Casual dress.
12. Free hot and cold drinks in our own, modern kitchen/break-out.
A word on UK Security Clearance
Due to the secure nature of the position and working environment, you must have, or be eligible to obtain Security Clearance.
More details relating to UK Security Clearance can be found here:
United Kingdom Security Vetting: clearance levels - GOV.UK (www.gov.uk)
SiXworks is an IBM subsidiary which has been acquired by IBM and will be integrated into the IBM organisation. SiXworks will be the hiring entity. By proceeding with this application, you understand that SiXworks will share your personal information with other IBM subsidiaries involved in your recruitment process, wherever these are located. More Information on how IBM protects your personal information, including the safeguards in case of cross-border data transfer, are available here: https://www.ibm.com/privacy
What to do next?
If you are interested in the above, please apply using the link provided.
To find out more about the vacancy or SiXworks, please contact Natalie at recruitment@sixworks.net
Notice
SiXworks recognises the benefits of Reserve service to Country, Company and individual.
We support Reservists and actively encourage them to apply.
We are not considering submissions from agencies. #J-18808-Ljbffr