The Opportunity We’re looking for a Security Assurance Coordinator (SAC) to join a growing defence programme, playing a key role in ensuring systems, services, and delivery activities meet stringent UK Government and MOD security requirements.
This is a governance, assurance, and coordination-focused role—ideal for someone who understands security policy and risk but prefers influencing and assuring rather than hands‑on engineering.
You’ll operate at the centre of security, delivery, and stakeholder teams—helping translate policy into practical assurance outcomes.
What You’ll Be Doing
* Delivering security assurance across complex defence systems and services
* Supporting accreditation activities, including risk assessments and compliance evidence
* Ensuring alignment with MOD, HMG, and NCSC security standards
* Acting as a bridge between technical teams, programme delivery, and security stakeholders
* Identifying risks, control gaps, and non‑compliance, and driving mitigation actions
* Supporting audit readiness, incident response coordination, and assurance reporting
* Contributing to security governance, standards interpretation, and policy application
What We’re Looking For
* Experience working within MOD or defence environments
* Background in Information Assurance, Security Assurance, or Governance/Risk/Compliance (GRC)
* Previous experience operating as (or alongside) a Security Assurance Coordinator (SAC)
* Strong understanding of UK Government security policy and governance frameworks
* Ability to interpret policy and translate it into actionable assurance activities
* Comfortable engaging with stakeholders across technical, security, and programme teams
Desirable Experience
* Familiarity with UK Government and industry frameworks such as:
o JSP 440 (Defence Manual of Security)
o JSP 604 (Defence ICT Security)
o HMG Security Policy Framework (SPF)
o NCSC Cloud Security Principles
* Exposure to risk and assurance frameworks, including:
o ISO/IEC 27001
o ISO 31000
o NIST Cyber Security Framework
* Experience working in cloud or hybrid environments (AWS/Azure) is beneficial.
Qualifications (Nice to Have)
* CISSP, CCSP, or ISO 27001 certifications
* CESG Certified Professional (CCP)
* ITIL (or similar service management framework)
* Degree in Cyber Security, Information Assurance, or related field
#J-18808-Ljbffr