Cyber Security Consultant
Cyber Security Consultant
Revenue & Customs Digital Technology Services (RCDTS) was set up in 2015 as a subsidiary of HMRC`s Chief Digital & Information Officer Group and has one of the largest customer bases in the world.
HMRC, as a Civil Service department, is required to undertake appropriate actions to provide assurance that IT solutions, deployed to assist HMRC meet their business requirements, have an appropriate level of Cyber Security & Information Risk controls in place applied prior to the live deployment of the IT.
Responsibilities for this position may include but are not limited to:·Working with Business areas to understand, scope and define their security and technical requirements ·Inputting into the security aspects of Security Architect Blueprints which will guide projects and programmes ·Representing security at technical design authority meetings covering a wide range of technical solutions ·Actively supporting HMRC’s Digital Transformation including secure delivery of cloud solutions ·Providing advice, guidance and peer review to other CSIR teams and wider HMRC acting in a Tier 2 capacity ·Be a security exemplar offering risk based, pragmatic advise to business areas ensuring that risks are managed appropriately·Actioning escalated Cyber Security problems and service requests in a timely manner·Owning and managing cyber security issues through to resolution
Essential Skills· Work manage and lead other junior team members providing oversight · Provide appropriate oversight and where necessary escalations around security aspects· Able to review and critique Logical and Physical Architecture models, translating them into language which can be understood by business stakeholders· Familiar with tiered architectural designs · Knowledge of Internet architectures and controls · Ability to assimilate new technologies and models quickly and identify potential security weaknesses · Understanding of application security and applicable security controls/designs · Ability to translate business level requirements into risk based outcomes and propose appropriate controls · Comfortable leading discussions around risk and control selection within both technical and business audiences · Drives hard to reach an appropriate risk based outcome and manages stakeholders through the journey · Wide understanding of technical security controls and able to place them to deliver benefits within a solution· Able to review and design defence in depth architectures• A proven background in security consultancy and solutions design within business environments • A good understanding of security frameworks and associated legislation; in particular GDPR, Cyber Essentials and PCI · Experience in designing secure networks for a variety of customer sizes and industries
Candidates should either have SC Clearance or be willing to obtain it.
Candidates should hold or be prepared to obtain industry specific skills and certifications such as CISSP, CISM or CCP.
This job was originally posted as www.cwjobs.co.uk/job/79414695