The following job is no longer available:
Security Design Lead Information Assurance Architect (OUTSIDE IR35)

Security Design Lead Information Assurance Architect (OUTSIDE IR35)

Posted 6 June by Heat Recruitment
Easy Apply Featured Ended

• Job Title: Security Design Lead Information Assurance Architect

• IR35 Scope: out of scope
• CV Submission Deadline: 11/06
• The Maximum Pay Rate: £675.00
• Location:Outer London: Bernard Weatherill House
• Travel: Travel to other parts of the Home Office estate including other offices in Croydon and 2 Marsham Street with possibility of some other locations outside of London though this is not expected to exceed 10%.
• Contract Length: 6 months
• Security Clearance Level Required: SC - Security Check

Experience required:

  • CCP Security Architect
  • PCIAA (CRTSA preferred)
  • Experience with ISO27001, COBIT, SABSA


  • Experience of working within HMG Cyber Security
  • Experience of working across a complex supplier ecosystem
  • Experience of being able to help in the development of assurance models and metrics to push the responsibility to build securely back into the delivery space
  • Experience of working within a modern HMG DDaT (Digital, Data and Technology) structure
  • Experience of working with Home Office and Police systems

Along with....

  • Assist in managing demand for security architect resource
  • Review proposals submitted to the TDA and TSG for compliance with HO design and security standards
  • Review specific designs for effective security controls and advise on where improvements might be made that are proportionate and cost effective.
  • Advise the Accreditor of the level of residual risk associated with agreed designs
  • Assist the Head of Cyber Security in designing the new approach to secure design development and review


The individual will drive beneficial security change into the business through the development or review of architectures so that they:
• Fit business requirements for security;
• Mitigate the risks and conform to the relevant security policies;
• Balance information risk against cost of countermeasures;
• Ensure security is implemented in a consistent way across the programme, and drive the overall design;
• Working with agile developers and testers to review code, run and manage security tests and provide security assurance the resultant code is safe from a security perspective;
• Working to articulate current risks against the system, the proposed mitigation and support the on-going accreditation process;
• Creating, running and managing the security processes and procedures, both technical and not, to maintain the security of the system, personnel, and appropriate environments;
• Security architecture for the design of secure digital services;
• Security principles for the programme;
• Agile development and programme staff security education;
• Experience in delivering security within Internet facing, transactional digital services is essential;

Required skills

  • Architecture
  • CCP
  • Information Risk
  • Information Security

Reference: 35324141

Bank or payment details should not be provided when applying for a job. is not responsible for any external website content. All applications should be made via the 'Apply now' button.

Report this job