Information System Security Engineer (ISSE)
In this role, you will be responsible for ensuring that departmental systems meet mandatory UK government security standards and providing the technical assurance necessary to keep our systems authorized for use.
What You’ll Do (Responsibilities)
* Framework Compliance: Ensure all digital services align with the NCSC Cyber Assessment Framework (CAF) and the Government Functional Standard for Security (GovS 007).
* Security Certification: Lead technical activities to achieve and maintain Cyber Essentials and Cyber Essentials Plus certifications across the estate.
* Vulnerability & Cloud Oversight: Utilize tools such as Tenable and Prisma Cloud to verify system patching, monitor AWS/GC configurations, and ensure alignment with UK data protection laws.
* Technical Risk Reporting: Translate technical findings into formal compliance reports and Security Operating Procedures (SyOps) for senior stakeholders.
* Assurance Collaboration: Collaborate with technical teams to identify configuration gaps and advise on necessary fixes to maintain system accreditation.
What You’ll Bring (Skills & Qualifications)
* Proven Experience: A track record of preparing technical evidence for system accreditation or audits.
* Regulatory Expertise: Strong knowledge of UK-specific frameworks, including NCSC Design Principles and Cyber Essentials.
* Technical Tooling Proficiency: Comfortable navigating and extracting data from Tenable/Nessus and Prisma Cloud.
* Risk Management: The ability to identify technical compliance gaps and provide expert guidance on remediation.
* Communication: Strong skills in drafting formal security documentation and reporting to stakeholders.
What We Offer (Benefits)
* Location: 100% remote role in the UK.
* Competitive Compensation: Salary and benefits aligned with your professional experience.
* Work‑Life Balance: Flexible work options.
* Health & Wellness: Comprehensive health, wellness, and retirement plans.
* Growth Opportunities: Access to continuous learning and professional development.
Iron Mountain is committed to a policy of equal employment opportunity. We recruit and hire applicants without regard to race, color, religion, sex (including pregnancy), national origin, disability, age, sexual orientation, veteran status, genetic information, gender identity, gender expression, or any other factor prohibited by law.
To view the Equal Employment Opportunity is the Law posters and the supplement, as well as the Pay Transparency Policy Statement, CLICK HERE (link removed).
#J-18808-Ljbffr