Job Description
Security Assurance Co-Ordinator – Secure by Design (SBD)
Location: Andover/M4 Corridor (as required)
Contract Type: Contract (Outside IR35)
Clearance: DV Cleared
Role Overview
We’re working with an IT Consultancy who are looking for a proactive and detail-oriented Security Assurance Co-Ordinator to support the delivery of Secure by Design (SBD) principles. You’ll play a key role in ensuring security is embedded throughout the development lifecycle, working closely with technical teams, stakeholders, and assurance functions to maintain high standards of cyber resilience.
Key Responsibilities
* Coordinate and support the implementation of Secure by Design practices across projects and programmes.
* Act as a central point of contact for security assurance activities, liaising between technical teams, architects, and governance functions.
* Track and manage security risks, issues, and mitigation plans throughout the delivery lifecycle.
* Ensure security requirements are captured, validated, and integrated into design and delivery documentation.
* Support threat modelling, risk assessments, and security reviews.
* Maintain and update assurance artefacts, including design documentation, risk registers, and compliance checklists.
* Facilitate security sign-off processes and ensure alignment with internal policies and external standards (e.g., NIST 800-53 analysis).
* Promote a culture of security awareness and continuous improvement across delivery teams.
Essential Skills & Experience
* Strong understanding of Secure by Design principles and cyber security best practices.
* Experience working in or alongside security architecture, risk, or assurance teams.
* Excellent organisational and coordination skills, with the ability to manage multiple streams of work.
* Experience working with CAAT.
* Familiarity with risk management frameworks and security governance processes.
* Strong communication and stakeholder engagement skills.
* Ability to interpret technical documentation and translate security requirements into actionable tasks.
Desirable Skills
* Experience with threat modelling tools and techniques.
* Knowledge of cloud security (AWS, Azure, GCP).
* Understanding of regulatory and compliance frameworks.
* Background in cyber security, IT delivery, or project management.