Security Consultant

Key Responsibilities and Tasks

• Risk Management within a Defence and Security Sector.
• Security / Cyber architectures are proportionate to the GSC of the systems.
• Apply security design specifics to develop the security architecture.
• Strategic direction of Security projects.
• Managing security risk for projects.
• Producing evidence to meet various MOD regulations.
• Designing options and solutions to mitigate vulnerabilities.
• Understanding the security implications of bringing cutting-edge technology to government.
• Working with various teams across the business including Software Engineering, DevSecOps Engineering, Infrastructure Engineering, Agile and Cyber Security.

Experience (Essential)

• Four years of experience within a security role for information systems.
• A good understanding of
• Experience of working on risk assessments using industry approved methodologies (such as NIST, ISO 27005).
• Identification of suitable risk management activities (technical, physical, or procedural) to treat /mitigate the identified risks.
• Creation of security documentation to support the development of an information system, these could include Risk Assessments, Security Requirements, Security Policies, Security Test Plans/Results.
• Strong communication and presentation skills.
• High standards in written report and/or design documentation.

Experience (Nice to have)

• Experience of working with Government information systems.
• Knowledge of HMG/MOD policies (SPF/JSP 440, 604, 892).
• Knowledge and experience of Agile, DevSecOps, CI/CD principles and their application in secure environments.
• Detailed understanding of the technology used to deliver secure systems.
• Experience of working with classified MOD systems.

Environment and Benefits

We have modern offices in Cody Technology Park and have well established remote working arrangements.

For potential employees we offer an attractive range of benefits, including:

• Exciting and interesting work
• Bonus scheme
• Casual dress
• Free hot and cold drinks in our own, modern kitchen/break-out
• Secure, on-site parking, cafe, restaurant and gym facilities
• Company events & social hours
• Professional Development Opportunities
• Perkbox Employee Benefits system
• Bike to Work scheme
• Competitive Salary & Benefits Package
• Contributory Pension Scheme
• Maternity / Paternity Pay
• Friendly & Supportive Team

Our SiXworks team is a fusion of brilliance, featuring senior operational, technical, and business leaders from various industries and the armed forces.

We're also powered by a league of extraordinary IT engineers, architects, developers, and project managers. Together, we're an unstoppable force of innovation!

SiXworks' expertise includes secure-by-design, cloud computing and services, advanced network, platform and infrastructure design, rapid application development, cross-security domain systems, multi-source data platforms, cyber vulnerability mitigation and intelligence systems.

SiXworks provides supplier-agnostic, technical and business consultancy to customers, and champions opensource and best of breed technologies.

To date we have worked exclusively in the Defence and Security Sector, providing IT innovation projects and programmes, analysis and output-based consultancy.

SiXworks is an IBM subsidiary which has been acquired by IBM and will be integrated into the IBM organisation. SiXworks will be the hiring entity. By proceeding with this application, you understand that SiXworks will share your personal information with other IBM subsidiaries involved in your recruitment process, wherever these are located. More Information on how IBM protects your personal information, including the safeguards in case of cross-border data transfer, are available here: https://www.ibm.com/privacy

To be eligible for the role, you must hold UK nationality (British Citizenship).

It would be advantageous if you have sole UK nationality, but if you hold dual nationality with one being British, you will still be considered. Please could other nationalities held be disclosed.