Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our Security Assurance Team to manage risk and ensure secure programme deliveries.
- Company: We are a leading cybersecurity firm focused on delivering top-notch security solutions.
- Benefits: Enjoy competitive pay, flexible working arrangements, and opportunities for professional growth.
- Why this job: Be part of a dynamic team that values innovation and promotes a positive security culture.
- Qualifications: Must have DV clearance and experience in cyber security assurance and risk management.
- Other info: This role offers a chance to work with cutting-edge technologies in a collaborative environment.
As Cyber Security Assurance Consultant/IA Consultant is part of the Security Assurance Team (SAT), providing risk management and assurance of programme artefacts. The roles principally includes security manager on programmes of work collaborating across enterprises to produce end-to-end security solutions. Additional roles will also include the delivery of security training and content and supporting the promotion of a positive security culture. The role requires close collaboration with Security Architects, Testers, Engineers and senior stakeholders to achieve the balance between delivering security assured products and supporting speed of delivery. Reports to Security Lead; day to day work is managed by allocated team Scrum Master.
Responsibilities and Tasks
- Support delivery of secure Releases and Features aligned with the relevant Legacy or NIST assurance processes through Security Assurance stories agreed with nominated team Scrum Master.
- Create security assurance case for releases, including risk assessments and mitigations for identified defects and vulnerabilities.
- Liaise with Testers, Security Architects and Engineers to ensure smooth assurance process and timely delivery of contribution to assurance cases.
- Define Penetration Test and IT Health Check (ITHC) scope for relevant team.
- Liaise with Joint Design Team on scope and submission of assurance case.
- Keep Security Lead informed of progress within team and of any potential conflicts where Security Assurance issues may impede delivery.
- Provide security approval for service support activities, including IMPEX to various systems.
- Conduct daily checks (as part of rota) as required on nominated systems.
- Support incident investigation and security training and briefings.
- Support development of relevant security documentation; including RMADS, CoCo, RAR, SSP, POAM, OSMP (including SyOps).
- Where delivery priorities permit, support the provision of Authority services when Authority is unable to provide such services.
- Propose Risk Register entries to the Security Lead or Security Assurance Lead as required to agree areas of residual risk with the Authority.
- Escalate relevant security issues via the Security Lead or Security Assurance Lead for resolution at the security working group.
Knowledge, Experience and Capabilities
- Cyber Security Assurance
- ISO27001
- NIST 800-53 series
- MOD Secure by Design
- Information assurance
- Risk management
- High quality of written and verbal communication skills
- Experience of working in Secure environments (Highly desirable)
- Experience in Safe Agile methods (Desirable)
Key skills
- Compliance
- Security Architecture
- Security Assessment
- Security Audit
Information Assurance Specialist employer: Damia Group
Contact Detail:
Damia Group Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Assurance Specialist
✨Tip Number 1
Familiarise yourself with the specific security frameworks mentioned in the job description, such as ISO27001 and NIST 800-53. Understanding these frameworks will not only help you in interviews but also demonstrate your commitment to the role.
✨Tip Number 2
Network with professionals in the cyber security field, especially those who have experience in assurance roles. Engaging with them on platforms like LinkedIn can provide insights into the role and may even lead to referrals.
✨Tip Number 3
Stay updated on the latest trends and challenges in cyber security, particularly around risk management and assurance processes. This knowledge can be a great conversation starter during interviews and shows your proactive approach.
✨Tip Number 4
Prepare to discuss your experience with Agile methodologies, as the role mentions Safe Agile methods. Be ready to share examples of how you've successfully collaborated in Agile teams to deliver security solutions.
We think you need these skills to ace Information Assurance Specialist
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cyber security assurance, risk management, and compliance. Use keywords from the job description to demonstrate that you meet the specific requirements of the Information Assurance Specialist role.
Craft a Strong Cover Letter: Write a cover letter that showcases your understanding of the role and how your skills align with the responsibilities outlined. Mention your experience with ISO27001, NIST 800-53, and any relevant security clearances, particularly your DV clearance.
Showcase Relevant Projects: In your application, include examples of past projects where you successfully delivered secure solutions or managed security assurance processes. Highlight your collaboration with teams and stakeholders, as this is crucial for the role.
Proofread Your Application: Before submitting, carefully proofread your CV and cover letter for any spelling or grammatical errors. A polished application reflects your attention to detail, which is essential in the field of cyber security.
How to prepare for a job interview at Damia Group
✨Understand the Role Requirements
Make sure you thoroughly understand the responsibilities and tasks outlined in the job description. Familiarise yourself with terms like 'security assurance case', 'risk assessments', and 'NIST assurance processes' to demonstrate your knowledge during the interview.
✨Showcase Relevant Experience
Prepare to discuss your previous experience in cyber security assurance, particularly any work involving ISO27001 or NIST 800-53. Be ready to provide specific examples of how you've managed risks and collaborated with teams to deliver secure solutions.
✨Communicate Clearly
Given the emphasis on high-quality written and verbal communication skills, practice articulating your thoughts clearly. Use concise language and avoid jargon unless necessary, ensuring that your points are easily understood by all interviewers.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving abilities in real-world situations. Think about past incidents you've handled, how you approached them, and what the outcomes were. This will help you illustrate your capability to manage security issues effectively.
