The following job is no longer available:
Security Design Lead Information Assurance Architect (OUTSIDE IR35)

Security Design Lead Information Assurance Architect (OUTSIDE IR35)

Posted 6 June by Heat Recruitment Easy Apply Featured Ended

• Job Title: Security Design Lead Information Assurance Architect

• IR35 Scope: out of scope
• CV Submission Deadline: 11/06
• The Maximum Pay Rate: £675.00
• Location:Outer London: Bernard Weatherill House
• Travel: Travel to other parts of the Home Office estate including other offices in Croydon and 2 Marsham Street with possibility of some other locations outside of London though this is not expected to exceed 10%.
• Contract Length: 6 months
• Security Clearance Level Required: SC - Security Check

Experience required:

  • CCP Security Architect
  • PCIAA (CRTSA preferred)
  • CISSP or CISM
  • Experience with ISO27001, COBIT, SABSA

Also...

  • Experience of working within HMG Cyber Security
  • Experience of working across a complex supplier ecosystem
  • Experience of being able to help in the development of assurance models and metrics to push the responsibility to build securely back into the delivery space
  • Experience of working within a modern HMG DDaT (Digital, Data and Technology) structure
  • Experience of working with Home Office and Police systems

Along with....

  • Assist in managing demand for security architect resource
  • Review proposals submitted to the TDA and TSG for compliance with HO design and security standards
  • Review specific designs for effective security controls and advise on where improvements might be made that are proportionate and cost effective.
  • Advise the Accreditor of the level of residual risk associated with agreed designs
  • Assist the Head of Cyber Security in designing the new approach to secure design development and review

Description:

The individual will drive beneficial security change into the business through the development or review of architectures so that they:
• Fit business requirements for security;
• Mitigate the risks and conform to the relevant security policies;
• Balance information risk against cost of countermeasures;
• Ensure security is implemented in a consistent way across the programme, and drive the overall design;
• Working with agile developers and testers to review code, run and manage security tests and provide security assurance the resultant code is safe from a security perspective;
• Working to articulate current risks against the system, the proposed mitigation and support the on-going accreditation process;
• Creating, running and managing the security processes and procedures, both technical and not, to maintain the security of the system, personnel, and appropriate environments;
• Security architecture for the design of secure digital services;
• Security principles for the programme;
• Agile development and programme staff security education;
• Experience in delivering security within Internet facing, transactional digital services is essential;

Required skills

  • Architecture
  • CCP
  • Information Risk
  • CISSP
  • Information Security

Reference: 35324141

Bank or payment details should not be provided when applying for a job. reed.co.uk is not responsible for any external website content. All applications should be made via the 'Apply now' button.

Report this job