Security Design Lead Information Assurance Architect job in SouthendonSea at Anglo Technical Recruitment

Security Design Lead Information Assurance Architect

Company: Anglo Technical Recruitment

Location: Southend UK

Date Posted:Mar 12, 2018

IN scope of IR35The key responsibilities of the assignment are to:• Attend discovery and requirements meetings (including Agile "Sprint" meetings) alongside business representatives as subject matter expert in security risk management. We estimate there will be approximately 15 such meetings across the project lifecycle• Identify key information and security risks that need to be mitigated as part of the solution design and each of the Agile Sprints containing high priority developments;• Define the scope for security testing as required and support embedded security and security testing practices• Support the production of risk management documentation• Transferable skills and knowledge to be transferred to nominated in-house staffEngagement of a security architect to identify risks and solutions for the CDS programme to meet the assurance requirement. The security specialist will work closely with delivery teams and other architects as well as the HMRC TRDG Risk Assurer to provide security risk evidence.A key component in the Customs Declaration Services (CDS) programme is the redevelopment and management of the Customs Handling of Import and Export Freight (CHIEF) system. The scope and coverage of CHIEF and its business processes make its secure and successful operation critical to the UK infrastructure and economy. The programme of work is managed by the HMRC Customs Transformation Directorate. It will deliver using an Agile approach based on the Government Services Design Manual, involving Discovery and Alphas. The programme is due to start delivering components of live functionality from early 2018 and complete the delivery in early 2019. The current position is that the first test release to the trade is due to be delivered in Nov 2017.Delivery of the solution for CDS depends on security assurance through the HMRC Test Release Delivery Group (TRDG). This will be based on the information and security risks identified by the risk assessor, which will need to be accepted by the business owner alongside proposed mitigation activity. There is an established governance model which the security consultant will use.This PSCR relates to a requirement for a security consultant to support the Programme through all delivery stages as insufficient HMRC staff are qualified and experienced in Security Architecture to the required degree. The security consultant will require knowledge of UK Government accreditation processes and will have skills similar to those previously required through the UK Govt. CLAS scheme. HMRC does not resource this specialised role in-house.RequirementsCV Submission Deadline: Wednesday 14th March @ 15:00• Must have experience of working in major public sector IT change programmes, subject to GMPP levels of scrutiny.• Familiarity with Agile programme management delivery processes and integrating risk assessment practices.• Previous experience of designing and successfully delivering service security testing (including penetration testing) in a complex IT change environment.• Strong communication and interpersonal skills.To be effective the successful security consultant will be familiar with a range of digital/web services and solutions, ideally where open source and cloud technologies have applied agile development methodologies. The consultant will also be able to rationalise complex information to make it understandable for others to work with, specifically CESG advisers and HMRC Assurors.It is essential that they have experience of working in large and complex programmes, where business transformation is equally as important as IT change. The ability to work independently, proactively and with versatility in responding to changing circumstances is essential. The candidate will need an eye for detail, excellent communication skills and be able to interrogate reported information and challenge sources where inconsistences are found.Experiences and skills include:a. Security solutions experience, especially in HMG, and using agile methodology. You will need to develop a close working relationship with the HMRC Security team members who will be providing assurance as part of the accreditation process.b. Experience of digital/web solutions, especially open source and cloud based technology.c. Act as a security consultant in the development of the solution, instilling security best practice as the solution unfolds. Write pen testing scopes and interpret results; contextualising them, providing risk treatment suggestions and reassessing as appropriated. Ability to deal with complex projects, to assimilate and prioritise information, with security at the heart of enablement. In order to do this you will need to be able to integrate into the core team, and if inconsistencies appear challenge these and suggest pragmatic alternativese. Ability to work independently, proactively and with versatility to changing circumstancesf. Excellent eye for detail, communication skills with individual as all levels, and the ability to coach, as part of the role will be to effect a skills transfer. View full job description
JobCentre Plus 8 months ago
Need more jobs?

Submit your CV so employees can contact you directly for more!

Security Design Lead Information Assurance Architect jobs in SouthendonSea

Job location:

Southend-on-Sea Map of Security Design Lead Information Assurance Architect job in SouthendonSea at Anglo Technical Recruitment

JobHits is one of the fastest growing job search engines in the UK. Everyday 30,000+ new jobs, find your ideal job from vacancies at major job boards and companies� careers websites in the UK.

© 2013 - JobHits Pty Ltd