Job summary

🖥 Security Risk Manager
🏢 12-Month Contract Opportunity
🏡 Hybrid working, Outside IR35
📍 Bristol

❗Candidates must hold SC Clearance❗

Key skills required for this role

Security Risk Management, Secure by Design, NIST 800, CISSP, SC Cleared

Important

Security Risk Management, Secure by Design, NIST 800, CISSP, SC Cleared

Job description

The Security Risk Manager will support the security accreditation for systems within the organisation and everything else that would fall under an umbrella role of security SME.

The role also forms part of the Security Team governance team consisting of the Security Lead and Project Security Officer.

Candidates must hold SC Clearence at point of application.

Requirements

The following are some of the requirements an individual should have to make transition into the role easier:

• Understanding of the MOD accreditation process, including knowledge of Secure by Design (SbD)
• Knowledge of tools such as DART, ARM, etc.
• Risk Assessment methodologies
• NIST 800 - This is the basis for the security controls under SbD.
• Familiarity with JSP's, specifically JSP 440, JSP 604.
• Understanding of Supply Chain Security - DEFCON's 658/659A/660 and DEFSTAN 05-138.
• Good Communications skills.
• Conversant with ALL MS Office apps - Including MS Teams

Qualifications

• CISSP - Certified Information System Security Professional
• ISO 27001 - Information security Management
• ISO 27001 - Practitioner/Lead Auditor.
• Certified Cyber Professional (CCP)
• ISO 28000 - Supply Chain Security Management.
• Management of Risk in Government framework.