ISC2Certified Information System Security Professional. Knowledge of UK/NATO Information Assurance standards, procedures & systems, including Government Functional Standard GovS 007: Security, HMG IS1&2, ISO27000 series standards, NIST SP800 series standards, JSP440, JSP604, guidance material provided by NCSC, CPNI and NIST. Practical experience of producing Security Accreditation documentation Practical experience of NCSC and Common Criteria security evaluation More ❯
risks in business terms and advising on mitigation. Excellent stakeholder communication skills, up to C-level. Strong analytical and reporting abilities. Familiarity with risk management frameworks (ISO 3100X, NIST800series, ENISA, EBIOS, OCTAVE, FAIR). Preferred: Background in information security and security frameworks (eg, MITRE ATT&CK, ISO 2700X). Experience working in multinational environments. More ❯
Farnborough, Hampshire, South East, United Kingdom Hybrid / WFH Options
Talent Locker
be doing * Designing robust, secure-by-design architectures aligned to MOD and wider government standards * Writing and maintaining formal security policies and documentation * Managing risk using frameworks like NIST800-53 and producing key security artefacts (RMAs, Security Aspects, Test Plans, etc.) * Working with cross-functional teams including DevSecOps, Software, Infrastructure and Agile delivery * Leading on More ❯
