Security Architect (x2 roles)
Our client, a large government customer, are seeking x2 Security Architects to join their team. The role is based in Corsham with 2-3 days required onsite. The role requires SC clearance (though DV clearance is desirable) and candidates must be sole UK nationals.
There are two contracts available; one contract period is required for 6 months and the second contract period is for 12 months. Both offer a rate up to £725/day. Please specify in your application which contract length you would prefer to be submitted for.
IR35 STATUS: Inside IR35. Our client has indicated that they intend to operate the engagement as Inside IR35. Candidates would be required to operate through an umbrella company on this engagement. The rates above represent rate payable to the umbrella co.
DEADLINE FOR SUBMISSIONS: 24/11/2023 at 11:00
The Role
The Cyber Resilience Programme (CRP) requires two Security Architects to provide technical advice to users and to lead the development and assurance of all deliverables related to the Cyber Attack Recovery Planning (CARP) Project. CARP aims to ensure risk management processes include comprehensive Cyber Recovery Planning.
Main Responsibilities
The Security Architects will be accountable for all technical support and assurance activities associated with the CARP Project. This will include (but is not limited to):
- Recommend controls and identify solutions that support in improving its ability to recover from cyber incidents.
- Provide specialist advice and recommend approaches across teams and stakeholders.
- Support supplier facilitated pre-mortem' workshops focused on helping System/Service teams in developing their CARP compliant Cyber Recovery Plans.
- Support supplier facilitated workshops focused on testing/exercising system/service teams Cyber Recovery Plans to measure and improve their effectiveness.
- Provide technical assurance of SORs, commercial artefacts and supplier proposals.
- Review, refine and maintain all cyber recovery policy, guidance, and other documentation.
- Work closely with teams from complex interconnected and interdependent systems to support them in applying CARP guidance and developing recovery plans at an enterprise level.
Essential Skills and Experience
- Understanding security implications of transformation. You can interpret and apply an understanding of policy and process, business architecture, and legal and political implications to assist the development of technical solutions or controls. (Skill level: working)
- Analysis. You can apply the approach to real problems and consider all relevant information. You can apply appropriate rigour to ensure a full solution is designed and achieves the business outcome. (Skill level: working)
- Communication (security architect). You can demonstrate a deep understanding of security concepts and can apply them to a technical level. You can effectively translate and accurately communicate security and risk implications to technical and non-technical stakeholders. You can successfully respond to challenges. You can manage stakeholder expectations and be flexible, adapting to stakeholder reactions to reach consensus. (Skill level: practitioner), this should include and understanding of ISO27001 (awareness)
- Research and innovation. You can advise on developments to security properties in technology. You can identify new technologies and design their use in a business context. (Skill level: working)
- Enabling and informing risk-based decisions. You can work with risk owners to advise and give feedback. You can advise on risk impact and whether this is within risk tolerance. You can describe different risk methodologies and how these are applied, as well as the proportionality of risk. (Skill level: working)
Desirable Skills and Experience
- Understanding security implications of transformation. You can interpret and apply an understanding of policy and process, business architecture, and legal and political implications to assist the development of technical solutions or controls. (Skill level: working)
- Research and innovation. You can advise on developments to security properties in technology. You can identify new technologies and design their use in a business context. (Skill level: working)
- Hold a Certified Information Systems Security Professional (CISSP) certification.
Need to Know
- The Specialists are required to be UK Nationals and hold DV Clearance with a minimum-security clearance required of SC due to the potential security classification of the data processed under the project. Due to strict timeline requirements, the Authority will not sponsor a new SC or DV Clearance on this occasion.
- To work on a hybrid basis with occasional travel to Corsham base.
- To work exclusively on the CRP Project Portfolios assigned on the basis of 7.5 hours per day, for a term of 6 or 12 months commencing November 2023.
Candidate Eligibility
Candidates must be eligible to work in the UK, this role will not offer Visa sponsorship. Tier 2 - General visas cannot be accepted.
Reference: 2679979235
Security Architect (x2 roles)
Posted on Nov 16, 2023 by Quast Ltd
Our client, a large government customer, are seeking x2 Security Architects to join their team. The role is based in Corsham with 2-3 days required onsite. The role requires SC clearance (though DV clearance is desirable) and candidates must be sole UK nationals.
There are two contracts available; one contract period is required for 6 months and the second contract period is for 12 months. Both offer a rate up to £725/day. Please specify in your application which contract length you would prefer to be submitted for.
IR35 STATUS: Inside IR35. Our client has indicated that they intend to operate the engagement as Inside IR35. Candidates would be required to operate through an umbrella company on this engagement. The rates above represent rate payable to the umbrella co.
DEADLINE FOR SUBMISSIONS: 24/11/2023 at 11:00
The Role
The Cyber Resilience Programme (CRP) requires two Security Architects to provide technical advice to users and to lead the development and assurance of all deliverables related to the Cyber Attack Recovery Planning (CARP) Project. CARP aims to ensure risk management processes include comprehensive Cyber Recovery Planning.
Main Responsibilities
The Security Architects will be accountable for all technical support and assurance activities associated with the CARP Project. This will include (but is not limited to):
- Recommend controls and identify solutions that support in improving its ability to recover from cyber incidents.
- Provide specialist advice and recommend approaches across teams and stakeholders.
- Support supplier facilitated pre-mortem' workshops focused on helping System/Service teams in developing their CARP compliant Cyber Recovery Plans.
- Support supplier facilitated workshops focused on testing/exercising system/service teams Cyber Recovery Plans to measure and improve their effectiveness.
- Provide technical assurance of SORs, commercial artefacts and supplier proposals.
- Review, refine and maintain all cyber recovery policy, guidance, and other documentation.
- Work closely with teams from complex interconnected and interdependent systems to support them in applying CARP guidance and developing recovery plans at an enterprise level.
Essential Skills and Experience
- Understanding security implications of transformation. You can interpret and apply an understanding of policy and process, business architecture, and legal and political implications to assist the development of technical solutions or controls. (Skill level: working)
- Analysis. You can apply the approach to real problems and consider all relevant information. You can apply appropriate rigour to ensure a full solution is designed and achieves the business outcome. (Skill level: working)
- Communication (security architect). You can demonstrate a deep understanding of security concepts and can apply them to a technical level. You can effectively translate and accurately communicate security and risk implications to technical and non-technical stakeholders. You can successfully respond to challenges. You can manage stakeholder expectations and be flexible, adapting to stakeholder reactions to reach consensus. (Skill level: practitioner), this should include and understanding of ISO27001 (awareness)
- Research and innovation. You can advise on developments to security properties in technology. You can identify new technologies and design their use in a business context. (Skill level: working)
- Enabling and informing risk-based decisions. You can work with risk owners to advise and give feedback. You can advise on risk impact and whether this is within risk tolerance. You can describe different risk methodologies and how these are applied, as well as the proportionality of risk. (Skill level: working)
Desirable Skills and Experience
- Understanding security implications of transformation. You can interpret and apply an understanding of policy and process, business architecture, and legal and political implications to assist the development of technical solutions or controls. (Skill level: working)
- Research and innovation. You can advise on developments to security properties in technology. You can identify new technologies and design their use in a business context. (Skill level: working)
- Hold a Certified Information Systems Security Professional (CISSP) certification.
Need to Know
- The Specialists are required to be UK Nationals and hold DV Clearance with a minimum-security clearance required of SC due to the potential security classification of the data processed under the project. Due to strict timeline requirements, the Authority will not sponsor a new SC or DV Clearance on this occasion.
- To work on a hybrid basis with occasional travel to Corsham base.
- To work exclusively on the CRP Project Portfolios assigned on the basis of 7.5 hours per day, for a term of 6 or 12 months commencing November 2023.
Candidate Eligibility
Candidates must be eligible to work in the UK, this role will not offer Visa sponsorship. Tier 2 - General visas cannot be accepted.
Reference: 2679979235
Alert me to jobs like this:
Amplify your job search:
Expert career advice
Increase interview chances with our downloads and specialist services.
Visit Blog