Description
Location: Surrey
Hudson Shribman Recruitment is seeking a highly skilled Information Assurance Specialist to lead the design and implementation of secure systems, ensuring the protection of critical data and infrastructure. This role is ideal for professionals experienced in cybersecurity, information assurance, and embedded systems, with a strong focus on FIPS compliance and advanced security measures across hardware and software platforms.
Key Responsibilities
Software Security:
- Perform in-depth code reviews to identify and address security vulnerabilities.
- Design and implement secure communication protocols for embedded systems.
- Ensure encryption, secure boot mechanisms, and other cybersecurity measures are in place.
- Monitor software systems for unauthorized access or malicious activity.
Hardware Security:
- Embed security features, such as trusted platform modules (TPMs) and hardware encryption.
- Test hardware for vulnerabilities, including side-channel attacks and backdoor exploits.
- Ensure programmable logic devices are tamper-resistant.
Systems Architecture Security:
- Define and document security requirements aligned with FIPS, NIST, and organizational goals.
- Conduct risk assessments to mitigate potential threats to system architecture.
- Integrate secure practices across software and hardware teams.
- Proactively address emerging threats throughout the system lifecycle.
Risk Assessment and Incident Response:
- Identify security risks across hardware, software, and systems architecture.
- Develop and test incident response plans for breaches or system compromises.
Compliance and Standards:
- Ensure compliance with FIPS, ISO 27001, NIST, and other relevant standards.
- Maintain up-to-date knowledge of industry regulations across sectors like defence, aerospace, and critical infrastructure.
Security Testing and Validation:
- Conduct penetration testing vulnerability scanning across systems.
- Validate security measures including encryption access controls COMSEC.
Experience & Skills Required
Technical Expertise:
- Advanced knowledge of cybersecurity cryptography FIPS 140 embedded systems device security.
- Expertise in tools for vulnerability scanning penetration testing risk assessment.
- Familiarity with SIP AS-SIP assured communication services.
Collaboration & Leadership:
- Proven ability to collaborate with software engineers hardware designers systems architects.
- Strong communication leadership skills drive secure design principles.
Qualifications:
- Minimum of 5 yearsβ experience in information assurance cybersecurity related roles.
- Relevant certifications (e.g., CISSP CISM CEH) are highly desirable
Security Cleared: Due to the nature of this role you MUST be eligible for UK security clearance.