Cyber GRC / Configuration Management Analyst

Sword is a leading provider of business technology solutions within the Energy, Public and Finance Sectors, driving real transformation change within our clients. We use proven technology, specialist teams and domain expertise to build solid technical foundations across platforms, data and business applications. We have a passion for using technology to solve business problems, working in partnership with our clients to help in achieving their goals.

• Develop and document a Configuration Management Plan in alignment with NIST SP 800-128
• Document the 2nd Line of Defence roles and responsibilities in the Configuration Management Plan
• Rollout of the Configuration Management Plan, including communicating and assigning responsibilities
• Document Secure Configuration Policy Level Statements to define overarching secure configuration principles, including review then communicate it
• Document all the Configuration Compliance tooling which currently exists
• Gather Configuration Compliance reports from monitoring tools
• Analyse the reported deviations and escalate where necessary to drive the deviation resolution
• Define an Approved Software List for RedHat Linux
• Update the change management process and include input into the Change Advisory Board (CAB)
• Communicate the updates to change management teams
• Update the project assurance process

• Experience with Cyber Security standards such as ISO27001, or NIST 800-53
• Knowledge of Secure Configuration and Cyber Security Policy
• Experience writing cyber security policies and procedures
• Ideally experience with a Configuration Management Plan
• Strong documentation writing skills
• Ability to understand process flows and RACIs
• Ability to distil complex security concepts into simple language that can be understood by business users
• Ability to summarise secure configuration requirements into a few principles
• Collaborate with Comms teams and Business Change teams to rollout new processes and procedures

At Sword, our core values and culture are based on caring about our people, investing in training and career development and building inclusive teams where we are all encouraged to contribute to achieve success. We offer comprehensive benefits designed to support your professional development and enhance your overall quality of life.

In addition to a Competitive Salary, here's what you can expect as part of our benefits package:

• Personalised Career Development: We create a development plan customised to your goals and aspirations, with a range of learning and development opportunities within a culture that encourages growth.
• Flexible working: Flexible work arrangements to support your work-life balance. We can discuss individual preferences to make it work where possible.
• A Fantastic Benefits Package: This includes generous annual leave allowance, enhanced family friendly benefits, pension scheme, access to private health, well-being, and insurance schemes, an employee assistance programme, discounted cash plan and more.

At Sword we are dedicated to fostering a diverse and inclusive workplace and are proud to be an equal opportunities employer, ensuring that all applicants receive fair and equal consideration for employment, regardless of whether they meet every requirement. If you don't tick all the boxes but feel you have some of the relevant skills and experience we're looking for, please do consider applying and highlight your transferable skills and experience. We embrace diversity in all its forms, valuing individuals regardless of age, disability, gender identity or reassignment, marital or civil partner status, pregnancy or maternity status, race, colour, nationality, ethnic or national origin, religion or belief, sex or sexual orientation. Your perspective and potential are important to us.

If we can do anything to help make the hiring process more accessible, please let our talent acquisition team know when you apply so we can support any adjustments.