×

Job Details

Click here to become a registered jobseeker.

Risk Policy Specialist

Cheltenham, Gloucestershire, United Kingdom, £ £ 800.00-900.00 Daily Daily, Permanent

Description:

Information Risk Policy Specialist - DV Cleared

Brand new contract opportunity for a Information Risk Policy Specialist with DV Clearance (preferably through west) to start on project in a high security UK government building.

*First 8 weeks to be on site fully, then 2-3 days on site afterwards

Working with existing leads the work will major on delivery of some key policies such as PU.

Part of the work will be to review the current policy roadmap to identify gaps in existing and requirements for new policy to support hybrid cloud.

Will need to work with existing InfoSec leads across Accreditation and Architecture to successfully deliver against the requirements.

Where required the work will also lend itself into delivery of guidance products.

Role Description

Management and coordination of Information Security Policy across the organisation and suppliers

Conduct the key stages in the Scoping, Development, Delivery & Landing of Organisational level Policy, Standards, Guidance & Procedure.

Contribute to the development of other technical IA policies that are currently in development.

Interface with OGDs and partners as required to deliver assurance that policy implementation has landed appropriately.

Current recognised qualification(s) in Information Security Risk Management or Policy Development eg PCIRM (Practitioner Certificate in Information Risk Management), Policy Writing Course.

Essential skills (must be evidenced)

Experience in one or more of the following: Producing, Delivering or Landing Policy within an organisation.

Must have a strong understanding of Policy & the Policy Development Process.

Must have a good knowledge of Risk and the associated methodologies involved in identifying & managing risk effectively.

Have the ability to liaise with a diverse group of stakeholders with different interests and at different levels within the business.

Ability to work autonomously with a high standard of delivery to a dedicated requirement.

Must be able to receive constructive criticism & direction throughout an iterative development process.

Desirable skills

Ability to elicit key security requirements from a customer/business.

Conduct formal requirements capture and subsequent information security risk assessments, including evidence of Threat Modelling techniques utilised.

Having handled/managed/reviewed common IRM document sets, eg Risk Register(s)

Understanding NCSC guidance and policies coupled with the ability to apply them in line with the needs of the business.

At least three years working within the information Risk Management arena.

Keywords;

Risk Specialist, Information Risk Specialist, Risk Assurance, Information Assurance, DV Cleared, DV Clearance, Security Cleared, NCSC, Risk Engineer, Risk Management, PCIRM, Information Security

Job Details

1308066304
ASAP
Not Specified
Cheltenham, Gloucestershire, United Kingdom
Permanent
£ £ 800.00-900.00 Daily Daily