Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Develop and document a Configuration Management Plan to enhance cybersecurity.
- Company: Join Sword, a leader in tech solutions for Energy, Public, and Finance sectors.
- Benefits: Comprehensive benefits, career development, and a supportive work culture.
- Why this job: Make a real impact on cybersecurity while growing your skills in a dynamic environment.
- Qualifications: Experience with Cyber Security standards and strong documentation skills required.
- Other info: Inclusive team culture that values diverse skills and perspectives.
The predicted salary is between 36000 - 60000 Β£ per year.
Cyber GRC / Configuration Management Analyst
Sword is a leading provider of business technology solutions within the Energy, Public and Finance Sectors, driving real transformation change within our clients. We use proven technology, specialist teams and domain expertise to build solid technical foundations across platforms, data and business applications.
About the role: Develop and document a comprehensive Configuration Management Plan that aligns with the guidelines and recommendations set in NIST SP 800-128. This plan will serve as a critical framework to ensure that all configuration items are effectively managed and monitored, thus supporting the overall integrity and security of the information systems.
The role involves developing and documenting the Configuration Management Plan, defining and documenting the roles and responsibilities associated with the 2nd Line of Defense, and rolling out the plan to all relevant personnel and stakeholders.
Responsibilities:
- Develop and document a Configuration Management Plan in alignment with NIST SP 800-128
- Document the 2nd Line of Defence roles and responsibilities in the Configuration Management Plan
- Rollout of the Configuration Management Plan, including communicating and assigning responsibilities
- Document Secure Configuration Policy Level Statements to define overarching secure configuration principles, including review then communicate it
- Document all the Configuration Compliance tooling which currently exists
- Gather Configuration Compliance reports from monitoring tools
- Analyse the reported deviations and escalate where necessary to drive the deviation resolution
- Define an Approved Software List for RedHat Linux
- Update the change management process and include input into the Change Advisory Board (CAB)
- Communicate the updates to change management teams
- Update the project assurance process
Requirements:
- Experience with Cyber Security standards such as ISO27001, or NIST 800-53
- Knowledge of Secure Configuration and Cyber Security Policy
- Experience writing cyber security policies and procedures
- Ideally experience with a Configuration Management Plan
- Strong documentation writing skills
- Ability to understand process flows and RACIs
- Ability to distil complex security concepts in to simple language that can be understood by business users
- Ability to summarise secure configuration requirements into a few principles
- Collaborate with Comms teams and Business Change teams to rollout new processes and procedures
Benefits: At Sword, our core values and culture are based on caring about our people, investing in training and career development and building inclusive teams where we are all encouraged to contribute to achieve success. We offer comprehensive benefits designed to support your professional development and enhance your overall quality of life.
We are an equal opportunities employer, ensuring that all applicants receive fair and equal consideration for employment, regardless of whether they meet every requirement. If you don\βt tick all the boxes but feel you have some of the relevant skills and experience we\βre looking for, please do consider applying and highlight your transferable skills and experience.
#J-18808-Ljbffr
Cyber GRC / Configuration Management Analyst employer: Sword Group
Contact Detail:
Sword Group Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Cyber GRC / Configuration Management Analyst
β¨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend events, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
β¨Tip Number 2
Prepare for interviews by researching the company and its culture. Understand their values and how they align with your own. This will help you tailor your responses and show that you're genuinely interested in being part of their team.
β¨Tip Number 3
Practice makes perfect! Conduct mock interviews with friends or use online platforms to get comfortable with common questions. The more you practice, the more confident you'll feel when itβs your turn in the hot seat.
β¨Tip Number 4
Donβt forget to apply through our website! We love seeing applications directly from candidates who are excited about joining us. Plus, it gives you a chance to showcase your enthusiasm for the role right from the start.
We think you need these skills to ace Cyber GRC / Configuration Management Analyst
Some tips for your application π«‘
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience with Cyber Security standards like ISO27001 or NIST 800-53. We want to see how your skills align with the role, so donβt hold back on showcasing your relevant expertise!
Show Off Your Documentation Skills: Since strong documentation writing skills are key for this role, include examples of your previous work where youβve developed policies or plans. We love seeing how you can distil complex concepts into simple language that everyone can understand.
Highlight Collaboration Experience: This role involves working with various teams, so share any experiences where youβve collaborated with communications or business change teams. Weβre all about teamwork here at StudySmarter, and we want to know how you fit into that picture!
Apply Through Our Website: Donβt forget to submit your application through our website! Itβs the best way for us to keep track of your application and ensure it gets the attention it deserves. Plus, it shows youβre keen to join our team!
How to prepare for a job interview at Sword Group
β¨Know Your Standards
Familiarise yourself with Cyber Security standards like ISO27001 and NIST 800-53. Be ready to discuss how these frameworks apply to the Configuration Management Plan youβll be developing. This shows youβre not just knowledgeable but also serious about aligning with industry best practices.
β¨Documenting Skills Matter
Since strong documentation writing skills are crucial for this role, prepare examples of your previous work. Bring along samples of policies or plans you've written, especially those related to configuration management or cyber security. This will demonstrate your ability to communicate complex concepts clearly.
β¨Understand the Role of the 2nd Line of Defence
Be clear on what the 2nd Line of Defence entails and how it fits into the overall security framework. Think about how you would define roles and responsibilities in your Configuration Management Plan. This will show that you can think strategically about security processes.
β¨Collaboration is Key
Prepare to discuss how youβve collaborated with teams in the past, especially with communications and business change teams. Highlight any experiences where you successfully rolled out new processes or procedures, as this will illustrate your ability to work well with others and drive change.
