5 of 5 Contract Insider Threat Jobs in the UK

based on risk and regulatory impact Align mitigations to recognised best practice and national guidance Governance & Mitigation Frameworks - Design and establish Insider Threat Mitigation Group(s), potentially separated by licensee Define governance structures, including: Terms of Reference Membership and roles Escalation and decision-making mechanisms Support … without duplicating operational or analytical activity Skills & Experience Required - Essential - Proven experience leading or implementing an Insider Risk/Insider Threat programme Strong knowledge of: Cabinet Office Personnel Security Policy NPSA Insider Risk Mitigation Framework (or equivalent) Demonstrable experience in: Policy and strategy ...

cyber, personnel security, and wider business functions. A key element of the role will include strengthening the organisation's approach to insider threat and hybrid risk, in line with HMG and Cabinet Office policy, but this sits within a broader information security remit. This … operations System design and change Access control and identity management Support alignment between technical security controls and governance requirements Insider Threat & Hybrid Risk (Part of Wider Scope) Support the development and governance of insider threat and insider risk controls Ensure alignment with ...

Head of Insider Risk to provide strategic leadership and ownership of the organisation's insider risk and insider threat capability. This role is accountable for setting the vision, policy, governance, and operating model for insider risk, ensuring full compliance with … Risk policy aligned to: Cabinet Office Personnel Security Policy NPSA Insider Risk Mitigation Framework Establish and oversee Insider Threat Mitigation Groups and governance forums Define escalation, triage, and accountability models Enterprise Integration - Ensure joined-up delivery across: Personnel Security Cyber Security HR Legal ...

policies and standards. Coordinate vetting processes for non-permanent resources, ensuring consistent access assurance. Ensure privileged accounts and credentials are adequately protected from insider and external threats. Skills & Experience Strong IAM service management experience within a regulated environment. Solid knowledge of IAM platforms and concepts, ideally including: Active ...

Designing and executing adversary simulation and penetration testing activity against Defence systems Exploiting networks to enumerate services, escalate privileges, and move laterally Simulating advanced threat actor behaviour including command and control and data exfiltration Producing high quality technical and management level reports with clear remediation guidance Participating in technical … Team or offensive cyber experience within Defence or similarly regulated environments Active SC or DV clearance, ideally DV Strong understanding of insider threat scenarios and post-compromise activity Relevant certifications such as OSCP, CRTO, or GIAC, or equivalent hands-on expertise The ability to operate confidently onsite ...