IA Accreditation Consultant

Ref: ZR_6110_JOB  ·  Posted on 21 May 2021
Key responsibilities
  • Making and recording accreditation decisions, confirming that residual risks on behalf of their organisation(s) are within the risk appetite(s) as recorded in relevant risk documentation escalating as appropriate
  • Identifying information risks that have implications beyond the relevant risk methodology and communicating them to the relevant owners
  • Ensuring relevant standards and policies are appropriately applied
  • Ensuring that all information risk management artefacts that are the responsibility of the Accreditor are established, proactively monitored, and kept up to date
  • Establishing risk assessment and agreeing the controls that will cover physical, personnel, procedural and technical domains
  • Building open and honest collaborative relationships with Risk Owners, IA Security Managers and any other key stakeholders using narratives to influence behaviours and actions, to meet the organisation’s security requirements
  • Providing constructive and timely advice on information risk mitigation strategies and their implications
  • Providing updates on and relaying key issues pertaining to Risk Owners in team meetings and reviews
  • Proactively collaborating and sharing knowledge with other Information Assurance professionals
  • Ensuring that technical and business skills remain current, making time for personal development to be able to articulate risks in a way that is meaningful to others
  • Being able to justify their accreditation decision to stakeholders in terms of business objectives, threats, risks, vulnerabilities, controls, and business impacts
  • Providing constructive, pragmatic, and timely advice to others on whether proposed solutions are likely to result on significant risks that may go beyond the risk appetite of the business
  • Provide a comprehensive knowledge transfer on completion of individual tasking to an identified point of contact
Skills & experience
  • Existing high level HMG security clearance
  • Broad and expert knowledge of security controls and systems
  • Demonstrable experience in producing risk assessments in a UK Government environment
  • Demonstrable experience in providing security consultancy and technical IA solutions in a UK Government environment
  • Demonstrable experience in conducting compliance audits against standards, e.g. ISO27001
  • Familiarity of HMG Security Policy Framework, Information Assurance Standards and good practice
  • Relevant professional qualifications e.g. CISSP, ITPC
  • CCP membership desirable
Apply for role
Contract DV Cleared Management Consultant Risk Strategy Security Solutions CISSP

Refer your friend: We want to give you a Netflix or Amazon Prime subscription and £250 Love2Shop vouchers!

Refer your friend
Refer your friend:
Contact us

Let's connect and work together

Start the conversation

Submit CV  ·  Submit Vacancy