Cyber Security Assurance Consultant / IA Consultant

Cyber Security Assurance Consultant / IA Consultant – Nr Reading – Inside IR35 – £600 – £700 per day – 6 months + DV Cleared role, Candidates must hold a current DV level security clearance Overview As Cyber Security Assurance Consultant / IA Consultant is part of the Security Assurance Team (SAT), providing risk management and assurance of programme artefacts. The roles principally includes security manager on programmes of work collaborating across enterprises to produce end-to-end security solutions. Additional roles will also include the delivery of security training and content and supporting the promotion of a positive security culture. The role requires close collaboration with Security Architects, Testers, Engineers and senior stakeholders to achieve the balance between delivering security assured products and supporting speed of delivery. Reports to Security Lead; day to day work is managed by allocated team Scrum Master. Responsibilities and Tasks * Support delivery of secure Releases and Features aligned with the relevant legacy or NIST assurance processes through Security Assurance stories agreed with nominated team Scrum Master * Create security assurance case for releases, including risk assessments and mitigations for identified defects and vulnerabilities * Liaise with Testers, Security Architects and Engineers to ensure smooth assurance process and timely delivery of contribution to assurance cases. * Define Penetration Test and IT Health Check (ITHC) scope for relevant team * Liaise with Joint Design Team on scope and submission of assurance case * Keep Security Lead informed of progress within team and of any potential conflicts where Security Assurance issues may impede delivery * Provide security approval for service support activities, including IMPEX to various systems * Conduct daily checks (as part of rota) as required on nominated systems * Support incident investigation and security training and briefings * Support development of relevant security documentation; including RMADS, CoCo, RAR, SSP, POAM, OSMP (including SyOps). * Where delivery priorities permit, support the provision of Authority services when Authority is unable to provide such services * Propose Risk Register entries to the Security Lead or Security Assurance Lead as required to agree areas of residual risk with the Authority * Escalate relevant security issues via the Security Lead or Security Assurance Lead for resolution at the security working group Knowledge, Experience and Capabilities * Cyber Security Assurance * ISO27001 * NIST 800-53 series * MOD Secure by Design * Information assurance * Risk management * High quality of written and verbal communication skills * Experience of working in Secure environments (Highly desirable) * Experience in Safe Agile methods (Desirable) Key skills Compliance Security Architecture Security Assessment Security AuditCyber Security Assurance Consultant / IA Consultant – Nr Reading – Inside IR35 – £600 – £700 per day – 6 months + DV Cleared role, Candidates must hold a current DV level security clearance Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept our Data Protection Policy which can be found on our website. Please note that no terminology in this advert is intended to discriminate on the grounds of a person\’s gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job. Damia Group is acting as an Employment Business in relation to this vacancy and in accordance to Conduct Regulations 2003