Information Risk Assurer

Information Risk Assurer

Oxfordshire
£400 per day | Inside IR35
Hybrid - strong on-site presence required

We are supporting a public sector organisation in Oxfordshire to appoint an experienced Information Risk Assurer to strengthen information assurance, accreditation and secure-by-design practices across ICT services.

This is a delivery-focused role, working closely with architects, project teams and suppliers to ensure systems, services and data meet national, legal and local security requirements.

Key responsibilities

• Develop and update Information Assurance processes, policies and local standards
• Review system and solution designs to ensure secure-by-design principles are applied
• Identify information security risks and provide proportionate mitigation recommendations
• Produce clear security guidance for users and delivery teams
• Advise on security requirements for new and existing IT systems, including cloud services
• Review third-party security questionnaires and assess supplier suitability during onboarding
• Support accreditation activity through security documentation, risk assessments and assurance artefacts

Experience required

• Proven experience in Information Assurance or Information Security within a complex environment
• Strong understanding of information risk management and secure system design
• Experience assessing technical designs and third-party security controls
• Knowledge of relevant government or policing security standards and frameworks
• Ability to communicate security requirements to technical and non-technical stakeholders
• Public sector or policing experience is highly desirable.

Contract details

• Rate: £400 per day
• Status: Inside IR35

Vetting

• Candidates must hold or be eligible for NPPV3 and SC clearance

This role suits an Information Assurance professional who can provide pragmatic, credible security advice while supporting operational delivery in a public sector environment.