An Security Compliance Analyst is required to join the Information Technology team at a Defence Manufacturer.
About the Role:
*Establish security compliance requirements in respect of commercial terms and conditions, applicable legislation, standards and guidelines
*Liaise with IT and business stakeholders to confirm current security arrangements and maintain a Systems Security Plan
*Undertake gap analyses, comparing current security arrangements to the established requirements. Identify security vulnerabilities, and liaise with technical specialists and business leads to identify potential solutions. Engage with the project management community to devise plans for implementing those solutions, and oversee their introduction into service
*Develop Risk Managed Accreditation Document Sets and Security Operating Procedures, and support systems accreditation
*Evaluate subsequent ongoing service operations to ensure the controls remain fit for purpose
*Support development of System Security Plans, Risk Managed Accreditation Document Sets, Cyber Improvement Plans and Security Operating Procedures
*Render security compliance advice to internal stakeholders, and liaise with systems architects and business managers preparing Security Management Plans for bids and projects
*Respond to external customer security surveys and participate in audits
*Report progress and compliance against relevant legislation, standards, guidelines and commercial terms and conditions to senior management
*Other duties as required by the Director of Compliance.
You will have the following experience:
Experience in the defence and aerospace industry covering:
*Secure commercial, MoD, US, or NATO a systems
*Security evaluation and accreditation support, including interaction with MoD Accreditors.
*Commercial IT systems security
*NIST-(Apply online only), FedRAMP and DFARS (phone number removed)
*MoD Industry Security Notices and Def-Stan 05/138
*ISO9001 and 27001 family
*GDPR and HIPPA
*Export control and ITAR
*Systems engineering, covering:
oInfrastructure, networking, servers, end-point devices, storage, Email, SharePoints, software operating systems, applications and web-browsing
oA range of security enforcing functions
*Bid preparation, project lifecycle management, IT service delivery and supply chains
*Risk management, audit and/or quality assurance.
Security Compliance Analyst
Salary: Competitive + benefits
The role will require all employees to achieve and maintain SC security clearance or above without restrictions that will inhibit the individual's ability to fulfil the requirements of the role. Your eligibility for the appropriate level of security clearance may be discussed with you during the recruitment process. Any existing clearance holders may be able to transfer clearance (subject to approval).
Electus Recruitment Solutions provides specialist engineering and technical recruitment solutions to a number of high technology industries. We thank you for your interest in this vacancy. If you don't hear from us within 7 working days please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV/details in the future and we shall assess your suitability at that time.
This is a permanent position.
Electus Recruitment Ltd is acting as an Employment Agency in relation to this vacancy