Accessability Links

Information Assurance Manager

  • Location: South West London
  • Salary: up to £120K plus package
  • Job type: Permanent
  • Job reference: 931369
  • Sector: Private Sector
This vacancy has now expired.

Job description Date posted: 01/10/2019




Closing date: 14th October 2019

We have been retained by our client, a global leader in complex marine control systems to identify an Information Assurance Manager to be solely responsible for ensuring the accreditation to JSP 440 of their COTS PLC and SCADA technologies,

The Role: 

  • Establishing guidelines and policies surrounding risk and security 
  • Audit current and future Commercial off the shelf based PLC and SCADA systems 
  • Working with the engineering teams to implement the right security strategy 
  • Monitor selected COTS hardware and software for any suspicious behaviour or traffic 
  • Responsible for production of RMADS to support accreditation against JSP440 
  • Chair security working groups with internal stakeholders, customer, end user and accreditor 
  • Planning IA activities to support design system engineering design reviews, software design reviews and software delivery 
  • Functional management and mentoring of a graduate IA engineer 
  • Working within a multi-disciplined team including project managers, supply chain, software engineers, hardware engineers, safety engineers and quality engineers 
  • Support to new bids and proposals for future opportunities 
  • Conduct penetration testing to find exploitable weaknesses 
  • Occasional travel around the UK to suppliers and customers

Skills & Experience

For this role the ideal candidate would have: 

  • Ability to use HMG Standards, including Information Assurance Standard 1 and 2 for technical risk assessment and creation of Accreditation documentation. 
  • Have worked with and implemented:
    • HMG Departmental Policies and Publications such as MoD Joint Service Publications.
    • CESG Good Practice Guides and other CESG guidance.
    • Cabinet Office Policies such as the Security Policy Framework. 
  • Systems in high impact level environments, including achieving full IA Accreditation. 
  • Used HMG Approved hardware devices such as Data Diodes and Enhanced grade encryption devices. 
  • Familiarity with personal computer lockdown techniques using domain based technologies. 
  • Security Cleared or be prepared to undergo a Security Clearance. Baseline Personnel Security Standard and/or United Kingdom Security Vetting (UKSV) to obtain a Security Check (SC) without restrictions. 
  • Someone with Good presentation and customer facing skills, including working on Security Working Groups. 
  • Collaborative working to resolve conflicting requirements 
  • Understanding of systems engineering lifecycle and how to apply this to IA
  • Communication of complex technical issues and solutions to non-technical stakeholders

This role would be suitable for: 

  • An experienced Security Architect who was also a CESG Listed Advisor Scheme (CLAS) member and is now a CESG Certified Professional (CCP). 
  • Information Assurance (IA) practitioner. 
  • Experienced ISO27001 practitioner, including creating Statement of Applicability's. 
  • Someone who has an understanding of Cryptographic techniques and technologies.

An extremely competitive salary and package is on offer for the right candidate.

Please apply to stephen.womersley@veredus.co.uk

Veredus is part of Capita Plc, an executive search & selection specialist.