Information Assurance Consultant

Information Assurance Consultant

I am looking for an Information Assurance Consultant to join my client, a top contributor to the UK MOD and industry leader, as a member of their Project Assurance team. This role will be based in central London with travel.

The Role

This role requires you to take ownership of any unresolved security matters and co-ordinate the resolution with the relevant stakeholders, accreditation bodies and Security Working Group (SWG).

You will be responsible for taking the lead in providing rigorous assessment and validation of the information assurance competences of a solutions design and deployment.

It is essential that you have a sound technical understanding of electronic security measures and how any cryptographic security measures may be implemented into the solution. You must also have a good practical experience of cyber security, security operations, configuration management and must be aware of the principles of risk management.

You will receive direction from the Accreditor, the Information Risk Owner (IRO), the Defence Crypto-security Authority (DCA), the Project Board, and the Project Manager.

Your responsibilities will include:

• Provide advice on security policy and technical solutions & ensure that National and MoD Cryptosecurity and security policy is being correctly applied.
• Organise the Project SWG meetings around a status list of requirements for each accreditation or re-accreditation covering COMSEC, COMPUSEC, TEMPEST, Key management and P3 (Physical, Procedural & Personnel) measures for each project or phase.
• Ensure that the configuration management procedures meet the criteria for the required level of assurance and that Cryptonet Controlling functions are in place where necessary.
• Liaise with the National Security Authorities advisors, the Defence Cryptosecurity Authority and TLB Principal Security Advisors (PSyA) and advise the SWG as appropriate.
• Responsible for the production of all security deliverables (e.g. security documentation) and ensure that they are fit for purpose (to the satisfaction of the Accreditor).
• Arrange with Accreditor for the issue of Interim and/or full accreditation certificates as required by stages of the project.

What’s special about this role?

My client is committed to ensuring their employees feel valued and supported and will encourage you to fulfil your potential through:

• Flex-leave schemes: We offer our employees the time and flexibility they need to enjoy a balanced life
• Annual leave: We offer 25 days holiday plus 8 bank holidays
• Supportive relocation package: to make your move to London even more attractive
• Award-winning pension scheme: Our multi-award-winning pension scheme includes generous employer contribution
• Employee discount schemes: We offer you and your family an attractive range of discounts from retail and cinema to hotel bookings and vehicles benefits
• Salary sacrifice schemes including childcare voucher scheme: We encourage working parents to save money on childcare by offering them several advantageous facilities and vouchers
• Career break: Where appropriate, we support our employees in pursuing other interests outside the workplace

Required experience/qualifications

Please note due to the security requirements of this role only sole UK nationals can be considered.

In terms of what we are looking for in applicants, we would love to hear you talk about:

• CESG Certified Professional (CCP) or equivalent CESG Listed Advisor (CLAS)
• Fundamental understanding of HMG Security Policy Framework, MoD JSP440 and ISO 27001 accreditation with the capability to create and maintain supporting documentation in relation to a Risk Management Accredited Document Set (RMADS)#
• Production and review of IS1&IS2 Risk Management and Accreditation Document Sets (RMADS) within a UK MoD (JSP 440) environment
• DSAS in an IA and IT Security role and able to clearly demonstrate recent experience of working within an Information Security and Information Assurance environment
• Defence/MoD experience (Highly desirable)

For more information or an informal discussion about this position please contact Thom Taylor on 01908 030131 or Thomas.taylor@identifiglobal.com