Isystems Integration Ltd
,
Maidstone, Kent
DV Cleared Cyber Security Consultant
|
Salary: Up to £750 per day |
---|
Overview
Our client, a government department, requires a DV level security cleared Cyber Security Consultant to: · Develop & document security-architecture & data-handling approach. · Develop & maintain security policies and procedures. · Security representation to senior stakeholders. · Identify, document and manage security risks. · Security input to project-planning. · Conduct internal security-audits and remedial activities. · Manage external security-audit (e.g.ITHC) and remedial-activities. · Manage implementation of security-tooling. · Ongoing skills-transfer to staff. The candidate’s essential skills and experience; · Membership of a relevant professional body (e.g. BCS, CIISec). · At least 10 years of broad security experience, with a relevant general security qualification (e.g. CISSP, CRISC, CISM). · At least 10 years of experience in interpreting & implementing HMG security policy. · At least 10 years of experience developing security architecture, with a relevant senior security architecture qualification (e.g. CCP Senior Security Architect). · At least 5 years of experience in risk assessment and risk management, with a relevant risk management qualification (e.g. CCP SIRA). · Demonstrate extensive experience in providing board-level representation of security within the last 2 years. · Demonstrate extensive experience in the development and implementation of security strategy, policies and procedures within the last 2 years. · Demonstrate extensive experience in provision of Security Education & Awareness Training (SEAT) within the last 2 years. · Demonstrate extensive experience in security incident response within the last 2 years. · Demonstrate extensive experience of managing security within agile teams within the last 2 years. · Demonstrate extensive experience in managing the conduct of Security IT Health Checks (ITHC) and remedial activities, ideally having led an ITHC engagement within the last 2 years. · Demonstrate a solid understanding of securely handling sensitive data, including data valuation and interpretation of GDPR, DPA and other relevant legal instruments within the last 2 years. · Demonstrate experience of managing security in the context of open-source code repositories and products within the last 2 years. · Demonstrate extensive knowledge of working with the AWS cloud platform within the last 2 years. · Demonstrate extensive knowledge of AWS Identity and Access Management (IAM) within the last 2 years. · Demonstrate extensive knowledge of AWS security and monitoring tools (e.g. AWS Security Hub, AWS Config, AWS CloudWatch) within the last 2 years. Demonstrate experience in the practical hands-on implementation and management of security tools within the last 2 years. The candidate’s further preferable skills and experience; · Senior membership of a relevant professional body (e.g. FBCS, FCIISec). · Demonstrate experience of implementing systems of record within the last 2 years. · Demonstrate knowledge of AWS networking concepts within the last 2 years. · Demonstrate experience of using and securing AWS Key Management Service (KMS) within the last 2 years. · Demonstrate experience of using and securing AWS Cloud Hardware Security Module (CloudHSM) within the last 2 years. · Demonstrate experience of using and securing AWS Certificate Manager Private Certificate Authority (ACM PCA) within the last 2 years. · Demonstrate experience of using and securing AWS Simple Storage Service (S3) within the last 2 years. · Demonstrate experience of using and securing AWS Elastic Cloud Compute (EC2) within the last 2 years. · Demonstrate experience of using open-source security tools (e.g. Snyk) within the last 2 years. · Demonstrate experience of Continuous Integration and Continuous Deployment (CI/CD) within the last 2 years. · Demonstrate experience of using Infrastructure as Code to provision and manage cloud infrastructure using terraform within the last 2 years. · Demonstrate experience of using Git and GitHub, GitLab or Bitbucket within the last 2 years. · Demonstrate practical experience of configuring physical network and security tools (firewalls, switches, load balancers, etc) within the last 2 years. · Demonstrate experience of managing service migration from on-premise to cloud-hosted platforms within the last 2 years. · Demonstrate experience working in Data Centres within the last 2 years. This job was originally posted as www.totaljobs.com/job/89695863