At a Glance
- Tasks: Lead security for a complex Oracle ERP Managed Service in a major UK Government environment.
- Company: Join a dynamic team within the UK Public Sector focused on security excellence.
- Benefits: Competitive daily rate, hybrid working, and potential contract extension.
- Other info: Exciting opportunity for career growth in a high-stakes environment.
- Why this job: Make a real impact on national security while working with cutting-edge technology.
- Qualifications: Proven experience in security leadership and strong understanding of government security frameworks.
We are seeking an experienced Supplier Security Lead to act as the accountable security authority for a complex Oracle ERP Managed Service within a major UK Government environment. This is a senior, contractually-named security leadership role with day-to-day operational ownership of service security, ensuring compliance with UK Government security policy, NCSC frameworks, and client-specific security and assurance requirements. The role operates at the intersection of security governance, cloud security engineering, and live service operations, with direct engagement across the client's Security Operations Centre (SOC), internal delivery teams, and third-party vendors.
Key responsibilities:
- Act as the named security authority for the managed service across OPERATE and DEVELOP
- Own day-to-day operational security posture, risk identification, and continuous improvement
- Lead security engagement within client Design Authority and Enterprise Architecture forums
- Manage integration with the client SOC, including security reporting, SIEM alignment, and incident response coordination
- Oversee security incident management in line with the client Cyber Security Incident Response Plan
- Own joiner/mover/leaver processes, RBAC, PAM, and monthly access control audits
- Ensure delivery of security assurance artefacts for internal and external audit requirements
- Support and coordinate penetration testing, vulnerability management, and disaster recovery exercises
- Ensure compliance with GDPR / DPA 2018, NCSC IAS5, CAF, and related government standards
- Maintain and enforce security controls across Oracle Cloud environments and SaaS applications
- Ensure secure configuration of Oracle ERP (HCM, ERP, EPM) security models including SoD and data access controls
- Provide regular security reporting to client governance and assurance functions
- Act as escalation point for all service security risks and vulnerabilities
We're looking for:
- Proven experience as a security lead or accountable security owner on UK Government managed service contracts
- Strong understanding of NCSC HMG IAS5, Cyber Assessment Framework (CAF), ISO 27001, and GDPR
- Hands-on experience integrating with a UK Government SOC, including incident response and security reporting
- Strong working knowledge of Oracle Cloud security (OCI IAM, Vault, network security, audit, PAM)
- Experience securing Oracle SaaS applications (ERP, HCM, EPM) including RBAC and segregation of duties
- Background in operational security, not purely advisory or policy-based roles
- Experience leading security assurance, audit, and compliance activities in regulated environments
- Strong stakeholder management skills across technical, operational, and governance audiences
Requirements:
- DV Clearance (essential - must be active or recently held with credible reactivation route)
- UK National (mandatory)
- Must be willing to work exclusively within the UK
- Must be available for hybrid attendance at UK secure sites as required
Security Lead in Maidenhead employer: Method-Resourcing
At RSG Plc, we pride ourselves on being an exceptional employer, particularly for our Security Lead role based in Maidenhead. Our hybrid working model promotes a healthy work-life balance while offering competitive pay and the opportunity to work within the dynamic UK public sector. We foster a culture of continuous learning and professional growth, ensuring our employees are equipped with the latest skills and knowledge to excel in their careers.
StudySmarter Expert Advice🤫
We think this is how you could land Security Lead in Maidenhead
✨Tip Number 1
Network like a pro! Reach out to your connections in the security field, especially those who have experience with UK Government contracts. A friendly chat can lead to insider info about job openings or even referrals.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of NCSC frameworks and Oracle Cloud security. We recommend creating a cheat sheet of key points to discuss, so you can confidently showcase your expertise when it matters most.
✨Tip Number 3
Don’t underestimate the power of follow-ups! After an interview, drop a quick thank-you email to express your appreciation. It keeps you fresh in their minds and shows your enthusiasm for the role.
✨Tip Number 4
Apply through our website for the best chance at landing that Security Lead role! We’re always on the lookout for top talent, and applying directly can give you an edge over other candidates.
We think you need these skills to ace Security Lead in Maidenhead
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Security Lead role. Highlight your experience with UK Government contracts and security frameworks like NCSC and ISO 27001. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this role. Mention specific projects or experiences that relate to the responsibilities listed in the job description. We love a good story!
Showcase Relevant Experience:When filling out your application, make sure to showcase your hands-on experience with Oracle Cloud security and incident response. We’re keen on seeing how you’ve tackled similar challenges in the past.
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and keep track of it. Plus, it shows you’re serious about joining our team at StudySmarter!
How to prepare for a job interview at Method-Resourcing
✨Know Your Security Frameworks
Make sure you brush up on your knowledge of NCSC HMG IAS5, Cyber Assessment Framework (CAF), and ISO 27001. Being able to discuss these frameworks confidently will show that you understand the compliance landscape and can navigate it effectively.
✨Demonstrate Hands-On Experience
Prepare to share specific examples from your past roles where you've integrated with a UK Government SOC or managed security incidents. Highlighting your practical experience will help you stand out as a candidate who can hit the ground running.
✨Showcase Stakeholder Management Skills
Think about how you've successfully managed relationships with various stakeholders in previous positions. Be ready to discuss how you’ve communicated complex security concepts to both technical and non-technical audiences, as this is crucial for the role.
✨Prepare for Scenario-Based Questions
Expect questions that put you in hypothetical situations related to security incident management or risk assessment. Practising your responses to these scenarios will help you articulate your thought process and decision-making skills during the interview.
