Secure by Design DefStan 05-139 Knowledge and application of non-UK Information Assurance Standards NIST SP800 (in particular NISTSP800-53, NISTSP800-37, NISTSP) NIST Guidance Material Knowledge of encryption standards more »
and Cyber Kill Chain frameworks * Skilled in maintaining Microsoft directory services. * Skilled in using virtualisation software. * Knowledge of key security frameworks (e.g. ISO, NIST800-53, 800-171, 800-172, C2M2) * Excellent communication skills * Experience of writing Defence/Government documentation Responsibilities more »
but not limited to: Security governance and risk management approaches, tools, and techniques. Threat modelling (e.g. STRIDE) and socio-technical risk assessment (e.g. NIST800-30) methodologies. Attack classification and characterisation frameworks (e.g. MITRE ATT&CK) Computer, Network and Cloud Security architectures and controls, System Hardening … Transit, Public Key Infrastructure (PKI)), Security Monitoring and System Security Audit. National and international security standards including the International Standards Organisation (ISO) 27000 series, NIST Cyber Security Framework, Risk Management Framework, and SpecialPublication800Series, NCSC Cyber Assessment Framework, and other industry frameworks. Familiarity with more »