IT Security Officer - Cumbria, United Kingdom - KBR

    KBR
    KBR Cumbria, United Kingdom

    2 weeks ago

    Default job background
    Full time
    Description

    Title:

    IT Security Officer

    #LI-JI1 #LI-HYBRID

    Project: PPP ICT/IM

    Job Title: IT Security Officer

    Reports to: PPP ICT Programme Manager

    Location: Hinton House, Birchwood Park Avenue, Risley, Warrington , Cheshire WA3 6GR United Kingdom with regular travel to Cumbria (2 or 3 times per month) including probable overnight stays.

    Qualifications, Experience and Skills

  • Qualifications :

    • Essential:

  • Qualified at a minimum of degree level in an IT, Cyber Security, or analytical based studies.
  • Qualification or membership of a professional body in Information Security.
  • Experience of Cyber Security Standards.
  • Experience in applying technical information technology and information assurance controls to process mapping and information flows.
  • Experience of working in a Regulated environment.

    • Desirable:

  • Project Management experience.

    • Experience and Skills:

    Essential:

  • A good understanding of Cyber Security.
  • A good understanding of Agile Methodologies.
  • A good understanding of Process Mapping and Information flows.
  • Appropriate ICT experience including network management.
  • Ability to interpret business requirements and technical ICT documents into Cyber Security requirements.
  • Good understanding and knowledge of ICT systems (software, hardware and networks) and applications both legacy and current.
  • Good communication skills across all levels of the business and able to talk to non-specialists, specialists and senior stakeholders.
  • Ability to work independently and unsupervised.
  • Excellent problem solving skills.
  • Methodical and logical approach.
  • Self-motivated and can demonstrate high levels of resilience, honesty and integrity.
  • Knowledge of Civil Nuclear Information security requirements and NCSC good practice.
  • Understanding and knowledge of the strengths and weakness of modern ICT technology to identify vulnerabilities when assessing information systems architectures and designs.
  • Knowledge and experience of network and systems management.
  • Knowledge and use of security and privacy policy (including but not limited to ISO27001, ISO 27005, ISO22301, NISR 2013, NIST 800-53, EU GDPR and DPA 2018)
  • Knowledge of Cyber Security models and frameworks (NIST PDRR, Mitre ATT&CK, ONR SyAPs).
  • Knowledge and understanding of analytical modelling (business, security, technology).

    • Desirable:

  • Knowledge and experience of project management
  • Knowledge of process mapping and information flows.