Senior / Security Consultant SAC

Overview of Company

Ascentor specialises in independent cyber risk management. We view information security as a powerful business enabler. As part of the Amtivo Group, we specialise in independent information and cyber security consultancy.

Who are we looking for?

Ascentor is recruiting a Senior Security Consultant(s) to deliver Ascentor services and support the Ascentor growth plan.

The consultant shall have wide and deep knowledge of Information Security, superb communication skills and be comfortable operating at all levels within a customer’s management structure. Demonstrable experience of facilitating customer workshops to develop cyber security strategies or programmes/plans expected.

Role overview and core responsibilities

They must have experience delivering Information Risk Management/ Governance Risk Compliance services to large organisations. They must have demonstrable experience in defining technical and non-technical controls (such as NIST 800-53)  to mitigate information risks for:

  • large and complex platform programmes (Fleet, Land, Air), and/or
  • projects delivering ICT-based solutions.

They shall have an excellent understanding of the vulnerabilities that exist within modern ICT and how technology can be used to mitigate the information risks organisations face. A strong understanding of the security pros and cons of using the cloud is expected.

For the BATCIS, FPECM and SDA roles; demonstrable recent experience of successful delivery of the SAC service to DE&S Delivery Teams is essential as is a thorough understanding of the MoD Secure by Design, risk assessment, security document (eg RMADS) production and the MoD CADMID project lifecycle. Experience of NIST CSF and NIST 800-53/171 an advantage Information Assurance work within central government and civil nuclear experience would be a positive advantage with SC vetting as a minimum.

For commercial engagements demonstrable delivery of ISO27001 based ISMS or equivalent development of Organisational Security Management Plans based on NIST CSF etc. A thorough understanding of technical cyber security control frameworks such as: CIS Top 18 CSC. Significant experience of risk identification, assessment and management essential.

They will have the highest levels of personal integrity, be dynamic, resourceful, customer and delivery focussed with a passion for Information Security.

They will be an integral part of the team and will relish sharing knowledge, mentoring the less experienced members of Ascentor and be able to provide advice, guidance and peer review deliverables. They should be comfortable delivering topics at speaking events, using social media, writing blogs or white papers as part of the wider Ascentor sales and marketing effort. They will have demonstrable experience of maintaining positive and professional relationships with their previous clients.

Qualifications and Experience

Essential:

  • CCP Senior SIRA or equivalent (lapsed CCP acceptable)
  • BSc (2:1) or minimum of 10 years in Information Security roles
  • CISM or CISSP
  • Recent SAC experience
  • Recent MoD Accreditation/RMADS or Secure by Design experience

Desirable

  • CCP Practitioner IA Architect (including lapsed) or equivalent experience
  • CCP Senior IA Architect (including lapsed) or equivalent experience
  • CISA
  • Cloud Security
  • NIST CSF/RMF & 800-53/171
  • 27001 Lead Auditor
  • Recent experience of BOWMAN, MORPHEOUS, CRENIC, LAND GBAD
  • Knowledge or experience of ASTUTE or DREADNAUGHT
  • Experience in delivering security for defence projects as a security lead with a defence prime or subcontractor

Package included:

  • The company will cover the costs of Training and Exams including one re-sit.
  • Discretionary Team Bonus paid quarterly on completion of 6-month probation (6% of annual salary split into 4 quarters)
  • Auto-enrolment to the company pension scheme – contributions are up to 6% matched.
  • Death In Service benefit 4 x Salary
  • Laptop and DSE Equipment
  • Optional Paycare Healthcare Scheme at level 4 cover
  • Group Insurance Policy
  • 25 Days Annual Leave plus Bank Holidays increasing with service.
  • Training – minimum of 1 week funded per year.
  • Salary 70K per annum

If you’re interested in a confidential conversation, please email your CV to recruitment@amtivo.com.