Job Description

• Complete security risk assessments within an agile software delivery lifecycle framework.
• Identify security risks that arise from potential solution architectures, advising and assuring alternate solutions or counter measures to mitigate identified information risks.
• Delivering complex and innovative risk management plans across the organization.
• Deliver workshops focused on particularly risk identification and assessment.
• To be involved in all aspects of the Information Security strategy, as directed, ensuring alignment to business needs and risk appetite.
• Deliver risk review meeting to senior stakeholders

Required Knowledge, Skills, and Abilities

Exposure of working to security standards and policies - ISO27001/27002/27005/BYOD. Risk assessment in and agile delivery environment. Possess awareness and understanding of HMG and NCSC Security policies, standards and guidance. Exposure of modern IT technologies and services, such as Cloud. Good knowledge across cyber security. Ideally you will hold a NCSC Certified Professional, CCP SIRA, CCP IA Auditor, CISSP or CISM certification.