Cyber Assurance Specialist
- Location: Glasgow, Glasgow City, Scotland
- Salary: £0.00 - 83.20 per hour + inside IR35
- Category
- Sector: Aerospace and Defence
- Contract type Contract
- Consultant: Hose Edin
Cyber Security Assurance Specialist
Scotstoun, Glasgow
6 months
£83.20ph inside IR35 / Umbrella
Role Description
• Cyber Security gap analysis
• Cyber assessment / auditing
• Working with system owners, business owners and being able to articulate cyber security requirements
• Working on a volume of different systems – understanding different IT and OT technologies to be able to effectively audit different components
• Experience with defence, government, MOD or somewhere highly regulated like finance, medical etc.
• Experience with standards such as NIST, ISO27001, Cyber Essentials
• Deliver cyber assurance services for the Naval Ships business, covering Enterprise Applications and Operational Technologies
• Risk Assessment of gaps
• Deliver documentation to demonstrate compliance to internal and external stakeholders
• Assessment and provision of control effectiveness in managing Cyber security risk
• Work with security architecture / technical input into the development of secure solutions
• Support development of strategy and continual service improvement for the Cyber Assurance function
• Act as a subject matter expert regarding Cyber Assurance activities for the wider organisation
Core Duties
Check that all of the systems in place comply with global cyber standard
Understand the Cyber security standards– what do the systems must do to be considered secure
Check each system against the standard and check the non-conformities, risk assess and work with the business owners or the relevant people generate plan
Knowledge, Skills and Qualifications
• Industry knowledge of industry cyber security standards and/or knowledge of government cyber security standards
• Cyber Assurance / Assessment / Auditing experience of IT Systems
• Knowledge of IT application, infrastructure and security technologies
Skills:
• Proactively engage with System owners to assess their systems
• Ability to interpret system compliance with IT Security Standard
• Risk management experience
• Ability to work autonomously and manage workload and priorities based on demand from multiple projects
Qualifications preferred:
• CISSP/CISM/CRISC
• ISO27001 Lead Auditor
• Cyber Essentials scheme (Ideally would be looking for a lead assessor)