Role: Project Assurance Specialist
Contract Length: 6 months
Location: London or Manchester
IR35: Inside
Pay Rate to Intermediary: £725 - £775 per day
Spinwell is recruiting for a Project Assurance Specialist for an excellent opportunity within the private sector.
RESPONSIBILITIES OF THE PROJECT ASSURANCE SPECIALIST
- Provide end to end engagement on a wide range of business projects ensuring that security is built in and customer, company and employee data is protected;
- Attend project meetings and represent Information Security, providing advice and guidance as required;
- Review and consult on change documentation including Business Requirements, Design Documents, Detailed Designs, Network Diagrams, Data Flow Diagrams and others;
- Liaise with the Security Architects and wider team to provide technical requirements to ensure projects deliver secure solutions
- Ensure that relevant security policies and standards are applied to specific projects by adopting a hands-on approach – where necessary provide reference security designs for projects, to ensure alignment with the Enterprise Security Architecture
- Articulate risk in technical and non-technical terminology so that it can be interpreted by Information Technology and business individuals;
- Work with the Security Business Partners to scope, arrange and support penetration testing and vulnerability testing and track remediation to a close;
- Carry out Information Security impact assessments to meet Policies, Smart Energy Code (including licence obligations) and DPA/GDPR requirements on projects where appropriate;
- Strong End to End Information Security Project Assurance experience;
- Strong risk management knowledge and experience;
- Wide ranging knowledge of Information Security and IT Security frameworks, standards and application of best practice
- A good understanding of security tools including: vulnerability scanning, SIEM monitoring, physical security tools, DDoS Protection, remote access technologies, authentication and authorisation techniques, network sniffing, Data Loss Prevention
- Wide ranging knowledge on technology, its implementation in the corporate environment and best practice
- Knowledge of OWASP vulnerabilities, tools and methodologies;
- Varied IT experience including: ITIL, Hardware and Software architecture, SDLC, Operating systems and administration, Cloud, Networking technologies (routing, LANs, WANs, Firewalls, VPNs, IDS/IPS, SSL, IPSEC, http/s, and wireless), AV, Active Directory, Virtualisation, Shared storage, Cloud and mobile technologies;
- Have previous procurement experience including supplying contract clauses & contract review
- Ability to work as part of a team or individually;
- Self-motivated to research and maintain up to date industry knowledge and security awareness;
- Ability to work under pressure and maintain professionalism at all times;
- Ability to communicate effectively with all levels and areas of the business
SKILLS/EXPERIENCE OF THE PROJECT ASSURANCE SPECIALIST
- The Security Assurance Specialist must have experience of complex environments. This will preferably include experience of outsourced environments, Group/Market (hub and spoke) organisations, systems integrators. Any telecoms or energy background would be a bonus.
- The Security Assurance Specialist will have experience with a wide range of security technologies.A solid understanding of Risk Management, DPA and EU GDPR, and ISO 27001 is also required, along with experience of securing projects and using security testing methodologies.
- Strong written and verbal communication skills – capable of writing reports and presenting to groups
- Can plan, prioritise and manage own workload
- Capable of converting policy statement into reference security designs
- Ability to engage openly with external stakeholders and increase the profile of the security team
If you are a Project Assurance Specialist, apply now or send your CV to Spinwell!
We welcome all applications regardless of background, in line with our commitment to diversity, equality and inclusion.
Applying to this or any other vacancy advertised by Spinwell Ltd constitutes an agreement for Spinwell Ltd to hold your details for 24 months for the purpose of assessing suitability for the advertised position and to make you aware of any other positions deemed suitable of which You will make you aware by means of either email, text or phone. In line with GDPR regulations you are able to request your details be removed from the company data at any time by emailing us