Overview of Company
Ascentor specialises in independent cyber risk management. We view information security as a powerful business enabler. As part of the Amtivo Group, we specialise in independent information and cyber security consultancy.
Who are we looking for?
Ascentor is recruiting Senior Security Consultant(s) to deliver Ascentor services and support the Ascentor growth plan.
The consultant shall have wide and deep knowledge of Information Security, superb communication skills and be comfortable operating at all levels within a customer’s management structure. Demonstrable experience of facilitating customer workshops to develop cyber security strategies or programmes/plans expected.
Role Overview and Core Responsibilities
They must have a demonstrable experience in delivering Information Risk Management/ Governance Risk Compliance services to large organisations. They must have demonstrable experience in defining technical and non-technical controls (such as NIST 800-53) to mitigate information risks for:
- Large and complex platform programmes (Fleet, Land, Air), and/or
- Projects delivering ICT-based solutions.
They shall have an excellent understanding of the vulnerabilities that exist within modern ICT and how technology can be used to mitigate the information risks organisations face. A strong understanding of the security pros and cons of using the cloud is expected.
For the BATCIS and SDA roles; demonstrable recent experience of successful delivery of the SAC service to DE&S Delivery Teams is essential as is a thorough understanding of the accreditation process, risk assessment, RMADS production and the MoD CADMID project lifecycle. IA work within central government and civil nuclear experience would be a positive advantage with SC vetting as a minimum.
For the commercial engagements demonstrable delivery of ISO27001 based ISMS or equivalent development of Organisational Security Management Plans based on NIST CSF etc. A thorough understanding of technical cyber security control frameworks such as: CIS Top 18 CSC. Significant experience of risk identification, assessment and management essential.
They will have the highest levels of personal integrity, be dynamic, resourceful, customer and delivery focussed with a passion for Information Security.
They will be an integral part of the team and will relish sharing knowledge, mentoring the less experienced members of Ascentor and be able to provide advice, guidance and peer review deliverables. They should be comfortable delivering topics at speaking events, using social media, writing blogs or white papers as part of the wider Ascentor sales and marketing effort. They will have demonstrable experience of maintaining positive and professional relationships with their previous clients.
Qualifications and Experience
- CCP Senior SIRA or equivalent with ability to achieve Senior within 6 months
- BSc (2:1) or minimum of 10 years in Information Security roles
- CISM or CISSP
- Recent SAC experience
- Recent MoD Accreditation/RMADS experience
- CCP Practitioner IA Architect or equivalent experience
- CCP Senior IA Architect or equivalent experience
- Cloud Security
- NIST CSF
- 27001 Lead Auditor
- Recent experience of BOWMAN, MORPHEOUS and the wider BATCIS programme
- Knowledge or experience of ASTUTE or DREADNAUGHT
- Experience of delivering security for defence projects as a security lead with a defence prime or subcontractor
If you’re interested in a confidential conversation, please email your CV to [email protected].