Description
*CLAS Security Advisor - up to £750/day - 3 months - Bristol*
*Security Clearance: SC Clearance required*
*Please note: this contract has been deemed to fall IN scope of IR35*
Description:
Provide subject matter expertise on security projects. Advice and guidance on security matters relating, but not limited to, security accreditation of department systems. Production of Risk Managed Accreditation Document Set, Accreditation Plan, Security Architecture, User Security Instructions.
Key tasks and deliverables:
Deliverables are as above in timescales agreed with Line Manager to achieve and maintain Security Accreditation to meet project schedules.
The work required spans the disciplines of Information Assurance Security and Physical Security of the mission systems for Sentinel aircraft, Ground Stations and Support elements and Sentry aircraft and Ground Facilities.
The work is as follows but not limited to:
Production and update of Risk Managed Accreditation Document Set for Sentinel and Sentry Systems Targets of Accreditation.
Production of Code of Connection documents.
Project Security Plan review and update.
Update Security Grading Guide. d. Production of Risk Balance Cases.
Production of Test Security Instructions.
Security Risk Analysis of software and hardware modifications.
Update of Sentry Information Assurance Strategy.
Investigation of security issues raised by the operational community/Engineering Authority.
Subject matter expertise on projects security.
Production of written reports as required.
Review of project design and security documents.
Forensic Readiness Plan. m. Secretary at Sentinel Working Group and Sentry Security Working Group.
Working Groups are quarterly and held at RAF Waddington, Lincoln. The Main Operating Base is RAF Waddington, Lincoln. Travel to RAF Waddington will be required on occasions.
Highly desirable that applicants must have experience in aircraft mission systems and communications networks. Be fully familiar with the accreditation procedure and IA Std 1&2 risk assessments process to Her Majesty's Government standards. Fully familiar with Security Policy Framework (SPF).
Ideal:
Preferable if the candidate is a member of CESG IA Security and Risk Advisor, Member of Institute of Information Security Professionals and CISSP. ISO 27001 Lead Auditor qualification is also desirable.