Role: Cyber Security Risk & Assurance Advisor C736

Duration: 12 Month Contract

Day Rate: £600 - £650 Inside IR35

Location: Hybrid (London, Manchester, Bristol)

Eligibility: Be a UK national or have been a resident in the UK for a minimum of five years.

This is a great opportunity to work as Cyber Security Risk & Assurance Advisor for our Central Government Client. In this role, you'll support the secure design, development, and operation of digital products. You'll provide tailored security advice, applying security principles, standards, and government Secure by Design principles. Your responsibilities will include conducting cyber risk and vulnerability assessments, developing mitigation strategies, and promoting a positive security culture. You'll offer expert software and cloud security guidance, collaborate with stakeholders, and ensure compliance with relevant regulations. With a strong background in cyber security risk management and cloud security, you'll stay updated on emerging technologies and best practices, ideally holding relevant certifications like CISSP, CISM, or CRISC.

An understanding of NCSC frameworks and government cyber security standards would be preferred.

Role:

● Be embedded within GDS teams to support secure design, development and operation of our digital products.
● Provide tailored security advice by proportionately applying security principles, using published guidance and established standards.
● Promote a positive security culture.
● Engage with a range of experts and provide personal expertise in Information Security and Assurance.
● Provide expert software and Cloud security advice to software developers and other colleagues
● Conduct regular deep dive cyber risk assessments and vulnerability assessments.
● Support the completion and remediation of Cyber Assessment Framework reviews and incorporate effective security practices based on government Secure by Design principles.
● Identify, evaluate, and prioritise cyber risks and develop mitigation strategies.
● Anticipate new risks, developments and maintain and coach others in good practice.
● Develop, implement, and enforce cyber security policies and procedures.
● Ensure compliance with relevant laws, regulations, and standards
● Collaborate with internal and external stakeholders to manage cyber security risks.
● Report the status of cyber security risks, management activities to our Head of Cyber Risk & Assurance

Requirements:

● Have knowledge and experience of conducting risk assessment on complex digital services
● Have several years experience of Cyber security risk management or a related field.
● Can demonstrate strong understanding of Information and Cloud Security principles and Standards.
● Have experience in Cloud security and secure development practices.
● Stay up to date with emerging cyber security principles, standards and technologies
● Ideally have a degree in Computer Science, Information Technology, Cyber Security, or can demonstrate equivalent experience .
● Ideally hold relevant professional certifications (e.g. CISSP, CISM, CRISC) & or hold additional certifications in Information Security topics.

Apply today! (url removed)

Concept IT is an equal opportunity employer committed to diversity and inclusion.