REQ #

18509
Job description

CONNECT TO YOUR SKILLS AND PROFESSIONAL EXPERIENCE

Candidates will be able to demonstrate relevant knowledge and experience through a combination of qualifications and evidence of work history such as:

• Information Security qualification (or equivalent) e.g. CISSP.
• In-depth knowledge of security frameworks, standards, and best practices (e.g., ISO 27001, NIST, CIS, DSPT / CAF).
• Experience as a Security Architect or in a similar role, with a strong track record of designing and implementing security controls and/or solutions and leading technical teams.
• Experience with architecture methodology such as TOGAF or SABSA.
• Experience of threat and risk modelling.
• Strong understanding of network security, encryption, authentication, and access control mechanisms.
• Experience with security technologies such as firewalls, intrusion detection/prevention systems, security information and event management (SIEM) systems, and vulnerability assessment tools, and their configuration options.
• Familiarity with cloud security principles and best practices, including securing cloud-based infrastructure and services (AWS, Azure or Google).
• Experience of DevSecOps.
• Experience of research in technology trends and ways to secure those technologies.
• Experience with automated deployment techniques and CI/CD pipelines.
• Experience working in or with Government organisations, especially within a Health and Social Care setting, including the handling of assets subject to the Government Security Classification Policy.
• Knowledge of Government cyber requirements, e.g. Secure by Design, JSP 440, CAF or equivalent.
• Experience with public sector procurement and a keen interest in business development.

Please refer the Job description for details