Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our Security Assurance Team to manage risks and ensure secure programme deliveries.
- Company: We are a leading cyber security firm focused on delivering top-notch security solutions.
- Benefits: Enjoy competitive pay, flexible working arrangements, and opportunities for professional growth.
- Why this job: Be part of a dynamic team that values innovation and promotes a positive security culture.
- Qualifications: Must hold current DV level security clearance; experience in cyber security and risk management is essential.
- Other info: This role offers a chance to work on high-impact projects in a secure environment.
As Cyber Security Assurance Consultant/IA Consultant is part of the Security Assurance Team (SAT), providing risk management and assurance of programme artefacts. The roles principally include security manager on programmes of work collaborating across enterprises to produce end-to-end security solutions. Additional roles will also include the delivery of security training and content and supporting the promotion of a positive security culture. The role requires close collaboration with Security Architects, Testers, Engineers and senior stakeholders to achieve the balance between delivering security assured products and supporting speed of delivery. Reports to Security Lead; day to day work is managed by allocated team Scrum Master.
Responsibilities and Tasks:
- Support delivery of secure Releases and Features aligned with the relevant Legacy or NIST assurance processes through Security Assurance stories agreed with nominated team Scrum Master.
- Create security assurance case for releases, including risk assessments and mitigations for identified defects and vulnerabilities.
- Liaise with Testers, Security Architects and Engineers to ensure smooth assurance process and timely delivery of contribution to assurance cases.
- Define Penetration Test and IT Health Check (ITHC) scope for relevant team.
- Liaise with Joint Design Team on scope and submission of assurance case.
- Keep Security Lead informed of progress within team and of any potential conflicts where Security Assurance issues may impede delivery.
- Provide security approval for service support activities, including IMPEX to various systems.
- Conduct daily checks (as part of rota) as required on nominated systems.
- Support incident investigation and security training and briefings.
- Support development of relevant security documentation; including RMADS, CoCo, RAR, SSP, POAM, OSMP (including SyOps).
- Where delivery priorities permit, support the provision of Authority services when Authority is unable to provide such services.
- Propose Risk Register entries to the Security Lead or Security Assurance Lead as required to agree areas of residual risk with the Authority.
- Escalate relevant security issues via the Security Lead or Security Assurance Lead for resolution at the security working group.
Knowledge, Experience and Capabilities:
- Cyber Security Assurance.
- ISO27001.
- NIST 800-53 series.
- MOD Secure by Design.
- Information assurance.
- Risk management.
- High quality of written and verbal communication skills.
- Experience of working in Secure environments (Highly desirable).
- Experience in Safe Agile methods (Desirable).
Key skills:
- Compliance
- Security Architecture
- Security Assessment
- Security Audit
Contact Detail:
Damia Group Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Assurance Specialist
✨Tip Number 1
Network with professionals in the cyber security field, especially those who have experience with DV cleared roles. Attend industry events or webinars to connect with potential colleagues and learn about the latest trends in information assurance.
✨Tip Number 2
Familiarise yourself with the specific frameworks mentioned in the job description, such as ISO27001 and NIST 800-53. Being able to discuss these frameworks confidently during interviews will demonstrate your expertise and commitment to the role.
✨Tip Number 3
Prepare to discuss your experience with risk management and security assurance processes. Think of specific examples where you successfully identified vulnerabilities and implemented mitigations, as this will showcase your practical knowledge.
✨Tip Number 4
Stay updated on the latest developments in cyber security and information assurance. Follow relevant blogs, podcasts, or news sources to ensure you can engage in informed discussions during interviews and show your passion for the field.
We think you need these skills to ace Information Assurance Specialist
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cyber security assurance, risk management, and compliance. Use keywords from the job description to demonstrate that you meet the specific requirements of the role.
Craft a Strong Cover Letter: Write a cover letter that showcases your understanding of the role and how your skills align with the responsibilities outlined. Mention your experience with ISO27001, NIST standards, and any relevant security clearances.
Highlight Relevant Experience: In your application, emphasise any previous roles where you collaborated with security architects, testers, or engineers. Provide examples of how you contributed to security assurance processes and delivered secure solutions.
Proofread Your Application: Before submitting, carefully proofread your application for any spelling or grammatical errors. A polished application reflects your attention to detail, which is crucial in the field of cyber security.
How to prepare for a job interview at Damia Group
✨Understand the Role Requirements
Make sure you thoroughly read the job description and understand the key responsibilities. Be prepared to discuss how your experience aligns with the specific tasks, such as creating security assurance cases and conducting risk assessments.
✨Showcase Your Technical Knowledge
Be ready to demonstrate your understanding of relevant frameworks like ISO27001 and NIST 800-53. Prepare examples from your past work where you've applied these standards in a secure environment.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving skills in real-world scenarios. Think about past experiences where you had to manage security risks or collaborate with cross-functional teams, and be ready to share those stories.
✨Emphasise Communication Skills
Since the role involves liaising with various stakeholders, highlight your verbal and written communication skills. Prepare to discuss how you've effectively communicated complex security concepts to non-technical audiences in previous roles.
