Social network you want to login/join with:
CISO / Cyber Security Assurance Lead (EUC / MDM Focus), Milton Keynes
Client: Refreshing Recruitment Ltd
Location: Milton Keynes
Job Category: Other
EU work permit required: Yes
Job Views: 2
Posted: 07.06.2025
Expiry Date: 22.07.2025
Job Description:
Security Clearance required
Location: Central London, hybrid working
Contract: 6+ months
A Cyber Security Assurance Lead, “a mini CISO”, is sought to join a specialist End User Compute (EUC) IT services provider. The role involves leading the modernisation of secure digital workplaces with Zero Trust and next-gen security principles for high-profile Central Government departments, hence the need for current SC clearance.
As Cyber Security Assurance Lead, you will drive end-to-end EUC security assurance for a transformational Machinery of Government, macOS Developer Device Solution.
Key responsibilities include:
* Leading security assurance and governance throughout the solution lifecycle (architecture design, build, deployment, operational support).
* Developing and maintaining risk management documentation (RMADS, SyOps, DPIAs, threat models, continuous threat models).
* Ensuring alignment with assurance frameworks (GSC, NCSC guidance, Cabinet Office requirements, GDPR, ISO27001).
* Conducting threat and vulnerability assessments for macOS devices, MDM platforms, developer tooling, remote access, and cloud-native infrastructure.
* Driving secure-by-design practices, collaborating with security architects, engineering, DevOps, and testing teams.
* Interfacing with stakeholders for approvals and accreditation.
* Maintaining assurance registers and contributing to programme-wide risk management and reporting.
We are seeking candidates with a strong understanding of endpoint and device assurance, ideally with macOS and MDM integration (e.g., Jamf, Intune, Workspace ONE), and:
* Professional certifications such as CISSP, CISM, CCSP, or ISO 27001 Lead Auditor
* Experience leading security assurance in central government or similar high-assurance environments.
* Deep understanding of security assurance frameworks, including NCSC Cloud Security principles, GDS Service Standards, and government accreditation processes.
* Hands-on experience producing RMADS, SyOps, DPIAs, and similar artifacts.
* Experience with security tooling for risk assessments, threat modelling, and vulnerability scanning.
* Security Clearance
Preferred skills include experience in DevSecOps or agile environments, knowledge of Zero Trust architecture, IAM, and cloud-native security practices.
#J-18808-Ljbffr