Principle Cyber Security Architect
Reading
Job Number
41694
Posted
10th Jun 2021 : 4:43 pm
Job Status
Live
Job Type
Temporary
Duration
3 Months
Pay Type
Inside IR35
Pay Rate
To be confirmed on enquiry
Payment Method
Daily
Contact
Surita Dadral
Contact details
0203 356 4949, admin@121.uk.com
Job Description
The public sector client is looking to recruit a Principal Cyber Security Architect for a 3 month temporary contract based in Reading. The successful candidate will have a valid DBS. Please Note: This assignment sits inside of IR35.
Essential Skills & Experience
1/ Creating a Cyber Assurance Framework (CAF) for TRA in line with NCSC guidelines
2/ Executing an audit of TRA against the CAF
3/ Creating a plan and business case to address any security vulnerabilities identified by the audit
Key Tasks & Deliverables
• Create a TRA Information Security Framework working with TRA in collaboration with the client
• Creation of policies, procedure, standards and testing
• Create a risk tolerance statement for the TRA board to sign
• Test the Framework and complete Discovery Audit of all the inventory assets i.e. information, technology devices and related software
• Perform service gap analysis between existing managed service provider
• Update desktop managed service ITT with additional security measures
• Identify high risk suppliers and carry risk analysis and inform board with risks and mitigation actions
• Devise a residual risk treatment plan with high risk services
• Third Party System Assurance – MS Teams imbedded Apps, Platts Data tool, Zoom, WebEx, Recruitment System
• Assure TRA employment legal advice service
• Identify & design technology solution for the overseas investigations CAT A (high risk) posts
• Create a plan of attack for TRS and desktop infrastructure for the IT health check / Pen Test.
• Create governance structure for information security
• Complete discovery to understand KIM’s requirement of technology stack
• Map out network topology for TRA and highlight risks to mitigate
• Government internal audit agency to be invited to sit on the Cyber security programme board – this will support assurances to policies and procedures
• Define and test, with simulation, a Cyber Attack Playbook and continue to iterate to tighten cover