IT Security Auditor/Governance Lead

Reed are seeking an experienced IT Security Auditor/Governance Lead, to support with one of our Ministry of Defence based contracts. This role is pivotal in ensuring compliance with MOD standards, maintaining ISO27001 (2022) and Cyber Essentials Plus accreditations, and safeguarding our company from cyber incidents and data loss.

Current SC Clearance or able to obtain

Key Responsibilities:

• Governance & Compliance: Support contract governance to MOD standards, including Secure by Design principles.
• Auditing & Risk Assessment: Conduct audits, risk assessments, and ensure compliance internally and across the supply chain.
• Cyber Incident Management: Detect, respond, recover, identify, and protect the company from cyber incidents.
• Security Integration: Embed security in all stages of the application development life cycle and ensure continuous monitoring.
• Consultancy & Advice: Provide consistent, coherent advice and support to relevant capabilities, helping risk or service owners make informed decisions.
• Documentation & Accreditation: Write, review, and amend security documentation, oversee security audits, and maintain ISO27001 and Cyber Essentials Plus accreditations.
• Leadership & Coordination: Lead multi-team assessments, support delivery teams, and provide specialist advice on security tooling and analysis.

Qualifications:

• Experience: Proven experience with Ministry of Defence policies, standards, and procedures.
• Expertise: Subject matter expert in MOD standards including Secure by Design, JSP604/453, Defence Standard 05-137, DEFCONS 531, 532B, 76, 658, and 659.
• Skills: Strong grasp of IT security and operational frameworks, business continuity management, risk management, stakeholder engagement, regulatory compliance, and business & IT alignment.
• Communication: Excellent writing and communication skills, capable of explaining complex security policies to non-IT/security experts.
• Security Clearance: Hold Security Clearance (SC) or ability to obtain SC.

Why Join Us?

• Innovative Environment: Contribute to a culture of continuous improvement within the security team.
• Impactful Work: Play a crucial role in securing the company from cyber risks and ensuring compliance with MOD standards.
• Professional Growth: Guide and direct specialist activities, actively promoting development and sharing best practices across government, the public sector, and industry.

If you are a talented problem solver with effective communication skills and a passion for IT security, we invite you to apply for this exciting opportunity.

Apply Now!