At a Glance
- Tasks: Manage security documentation and assess supplier outputs for compliance.
- Company: Join a leading government contractor focused on high-security environments.
- Benefits: Enjoy excellent salary, benefits, and flexible travel options.
- Why this job: Be part of impactful projects ensuring national security and digital transformation.
- Qualifications: Relevant security certifications and proven experience in risk management are essential.
- Other info: Position requires SC clearance and involves travel to Bristol/Andover twice a week.
The predicted salary is between 48000 - 72000 £ per year.
SC Candidates required
Bristol/Andover travel 2 days a week
Permanent/Excellent Salary plus benefits
Relevant security certifications (eg, CISSP, CISM, ISO 27001 Lead Auditor, CCP SIRA) are highly desirable.
Experience
- Proven experience in security assurance and risk management with government or high-security environments.
- Strong knowledge of security frameworks and standards such as RMADS, NIST, DEF STAN.
- Experience with accreditation processes and developing security risk balance cases.
- Familiarity with codes of connection (CoCo), Secure by Design, and security impact assessments (SIAs).
Key Responsibilities
- Documentation & Security SME Advice
- Security Documentation Management: Prepare, review, and manage comprehensive security documentation to support project security objectives.
- Subject Matter Expert (SME) Review: Assess supplier security outputs to ensure alignment with security requirements and best practices.
- RMADS Management: Collaborate with suppliers to ensure the Risk Management and Accreditation Document Set (RMADS) is appropriate for the current stage of the programme.
- Security Impact Assessments & Integration
- Security Impact Assessments (SIAs): Support the identification, assessment, and mitigation of security risks associated with system changes.
- Codes of Connection (CoCo): Assist in developing Codes of Connection to enable secure data exchange across defence platforms.
- System Integration Support: Provide security oversight for integration activities between Project and other target platforms.
- Drafting Security Requirements
- Security Requirements Definition: Draft detailed security requirements for project Outline Business Case (OBC2), Invitation to Tender (ITT), and Full Business Case (FBC) submissions.
- Associated Security Documents: Produce supplementary security documentation, such as Security Assurance Levels (SALs) and Security Grading Guides.
- Procurement & Bid Evaluation
- Security SME Support: Provide expert security input throughout the procurement process to ensure compliance with defence security frameworks.
- Bid Evaluation: Assist in reviewing supplier bids to assess their adherence to security requirements and accreditation standards.
- Accreditation & Risk Management
- Accreditation Documentation: Prepare required documentation to achieve accreditation for applications hosted in defence on-premise, cloud, or hybrid environments.
- Risk Balance Cases: Develop and justify risk balance cases, ensuring a pragmatic approach to risk management and system assurance.
- Ensuring Coherence & Interoperability
- Programme Integration: Ensure security coherence and interoperability across sensor projects within the Programme.
- Wider Digital Programmes: Support integration with broader defence digital transformation initiatives.
- Compliance & Reporting
- DART & 604 Entries: Maintain and update security compliance records in DART and 604 for Project.
- Secure by Design: Undertake Secure by Design and 604 Compliance tasks aligned with SFIA Level requirements.
Security Assurance Coordinator; risk management, Govt, SC cleared employer: Vesta Consulting Limited
Contact Detail:
Vesta Consulting Limited Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Assurance Coordinator; risk management, Govt, SC cleared
✨Tip Number 1
Network with professionals in the security assurance and risk management fields, especially those who have experience working with government contracts. Attend industry events or webinars to connect with potential colleagues and learn more about the specific requirements of the role.
✨Tip Number 2
Familiarise yourself with the latest security frameworks and standards mentioned in the job description, such as RMADS, NIST, and DEF STAN. This knowledge will not only help you in interviews but also demonstrate your commitment to staying updated in the field.
✨Tip Number 3
Consider obtaining relevant security certifications like CISSP, CISM, or ISO 27001 Lead Auditor if you haven't already. These qualifications can significantly enhance your profile and show that you are serious about your professional development.
✨Tip Number 4
Prepare for potential interviews by practising responses to questions related to security impact assessments and risk management scenarios. Being able to articulate your thought process and past experiences in these areas will set you apart from other candidates.
We think you need these skills to ace Security Assurance Coordinator; risk management, Govt, SC cleared
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in security assurance and risk management, particularly in government or high-security environments. Emphasise your familiarity with frameworks like RMADS, NIST, and DEF STAN.
Highlight Certifications: If you have any relevant security certifications such as CISSP, CISM, or ISO 27001 Lead Auditor, be sure to prominently display these in your application. They are highly desirable for this role.
Craft a Strong Cover Letter: Write a compelling cover letter that outlines your experience with security documentation management and your ability to assess supplier security outputs. Mention specific examples of your work with security impact assessments and accreditation processes.
Showcase Your Knowledge: Demonstrate your understanding of security frameworks and standards in your application. Discuss your experience with Codes of Connection (CoCo) and how you've contributed to secure data exchange in previous roles.
How to prepare for a job interview at Vesta Consulting Limited
✨Know Your Security Frameworks
Familiarise yourself with key security frameworks such as RMADS, NIST, and DEF STAN. Be prepared to discuss how you've applied these in previous roles, especially in high-security environments.
✨Demonstrate Your Risk Management Experience
Highlight your proven experience in security assurance and risk management. Prepare specific examples of how you've developed security risk balance cases and managed accreditation processes.
✨Prepare for Technical Questions
Expect technical questions related to security documentation and impact assessments. Brush up on your knowledge of Codes of Connection and Secure by Design principles to showcase your expertise.
✨Showcase Your Certifications
If you have relevant security certifications like CISSP, CISM, or ISO 27001 Lead Auditor, make sure to mention them. These qualifications can set you apart from other candidates and demonstrate your commitment to the field.