Description
Job Purpose:
To provide specialist information security oversight, advice, and guidance to projects and functions on all aspects of information security in order to provide assurance that functions on all aspects of information security and/or classified information assets, materials, and/or equipment are subject to an acceptable risk management regime.
Key Accountabilities:
- Provide analysis of risks to information systems in order to inform risk owners and project managers to allow effective decision making.
- Provide expert subject matter advice to CISO and other elements of the IS management chain.
- Ensure IT projects are provided with timely technical security advice.
- Develop and apply the overall security architecture of the organisation and the place within it of key security controls.
- Maintains and promotes high personal standards in environment, safety, health, security, and quality and be a great team player.
Key Responsibilities:
- Work with functions, projects, and the supply chain to assess the sources of Information Risk and make recommendations on how these are to be managed.
- Provide the client lead for maintaining awareness of HMG, MoD, and industry best practice in Information Assurance and Information Risk Management.
- Determine how the overall security architecture applies to projects under consideration and advise project solution architects on security requirements.
- Review high-level solution designs for compliance with overall security architecture achievement of security requirements.