Information Assurance Specialist

AMS is a global workforce solutions partner committed to creating inclusive, dynamic, and future-ready workplaces. We help organisations adapt, grow, and thrive in an ever-evolving world by building, shaping, and optimising diverse talent strategies. Our Contingent Workforce Solution (CWS) is one way we support our clients. Acting as an extension of their recruitment teams, we connect them with skilled interim and temporary professionals, fostering workplaces where everyone can contribute and succeed.

On behalf of our globally respected client who develop cutting-edge technologies that deliver clean, safe and competitive solutions to meet the planet's vital power needs, we are looking for an Information Assurance Specialist for a 12 month contract based in Derby. Please note this role is a hybrid position in which you would be required to work onsite 3 days per week and work from home 2 days per week.

Responsibilities

• Provide Information Assurance through the application of policy, standards and best practice to support the IT product teams.
• Work with other IA specialists to ensure a common approach to cyber security issues is developed and documented.
• Support the development and continual improvement of Information Security policies, standards and procedures in line with ISO/IEC 27000.
• Serve as the Cyber Security representative on major programmes and product teams, providing authoritative guidance and approvals.
• Represent Cyber Security across strategic initiatives ensuring security requirements and secure by design principles are embedded from concept through delivery.
• Assess organisational and technical compliance with security policies and standards.
• Prioritise remediation using business impact assessments.
• Provide expert advice on the selection, implementation and assurance of security controls.
• Advise stakeholders on risk reduction strategies and promote secure behaviours.
• Identify, assess and manage cyber security risks and concessions.
• Contribute to broader cyber security initiatives and capability uplifts.
• Apply and oversee security controls required by policy, risk assessment and regulatory drivers.

Qualifications / Skills

• Strong overall understanding of information systems, their applications and lifecycle practices.
• Proven ability to interpret and apply IT security compliance requirements.
• Effective communicator with the ability to influence stakeholders.
• Broad knowledge of cyber and information security, supported by relevant professional qualifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer/Lead Auditor).
• Experience or strong awareness of enterprise cloud technologies (e.g., Azure, AWS, GCP).
• Understanding of Operational Technology (OT) environments and the unique security considerations associated with industrial control systems.
• Experience with Governance, Risk and Compliance (GRC) tooling.

Next steps

We will only accept workers operating via an Umbrella or PAYE engagement model. If you are interested in applying for this position and meet the criteria outlined above, please click the link to apply and we will contact you with an update in due course.