Experience
Proven experience in security assurance and risk management within defence, government, or high-security environments.
Strong knowledge of security frameworks and standards such as RMADS, NIST, DEF STAN, and policies.
Experience with accreditation processes and developing security risk balance cases.
Familiarity with codes of connection (CoCo), Secure by Design, and security impact assessments (SIAs).
Responsibilities
1. Documentation & Security SME Advice
Security Documentation Management: Prepare, review, and manage comprehensive security documentation to support project security objectives.
Subject Matter Expert (SME) Review: Assess supplier security outputs to ensure alignment with security requirements and best practices.
RMADS Management: Collaborate with suppliers to ensure the Risk Management and Accreditation Document Set (RMADS) is appropriate for the current stage of the programme.
2. Security Impact Assessments & Integration
Security Impact Assessments (SIAs): Support the identification, assessment, and mitigation of security risks associated with system changes.
Codes...