Security Consultant

About the job

We currently have an exciting opportunity for a Security Consultant to join our existing experienced team.

What do we look for in a  Security Consultant?

Key Responsibilities and Tasks

• Cyber Risk Management within a Defence and Security Sector.


• Provide strategic security direction of projects.


• Produce evidence to meet various MOD regulations.


• Work closely with various teams across the business (Software Engineering, DevSecOps Engineering, Infrastructure Engineering, Agile Development, Support) to achieve security outcomes.

Experience (Essential)

• Experience of working on risk assessments using industry approved methodologies (such as NIST 800-30, ISO 27005).


• Identification of suitable risk management activities (technical, physical, or procedural) to treat/mitigate the identified risks.


• Creation of security documentation to support the development of an information system, these could include: Security Aspects of Design, Risk Assessments, Risk Management Plans, Security Policies, Security Test Plans/Results.


• High standards in written report and/or design documentation.

Experience (Nice to have)

• Support development in a secure-by-design methodology.


• Experience working on technical low-level security designs.


• Knowledge of Legal and regulatory topics that merit consideration when conducting various activities in the field of cyber security.


• Knowledge of MOD policies (JSP 440, 453/604, 892)


• Knowledge and experience of Agile, DevSecOps, CI/CD principles and their application in secure environments


• Appreciation of the constraints and requirements imposed on development within secure, safety critical environments.


• Experience of working with MOD Cyber Assurance/Accreditors.

About SiXworks

SiXworks is a leading provider of secure digital solutions, specialising in digital experimentation and focused on fail-safe-fast cutting-edge technology solutions deployed in highly secure environments. We are unified in our mission to accelerate innovation and adoption of secure, digital technology to improve the operational agility of Defence and National Security. This is an exciting time for us, we have ambitious plans for continued growth and development, and we are seeking to add brilliant, experienced, motivated, and passionate people to our team to work with us on this journey.

Why join SiXworks?

SiXworks’ expertise includes Secure-by-Design, cloud computing, advanced network and infrastructure design, rapid application development, cross-security domain systems, multi-tenanted High-Performance Compute, multi-source data platforms, cyber vulnerability mitigation, and intelligence systems. We provide supplier-agnostic, technical, and business consultancy to customers while championing open-source and best-of-breed technologies.

What can we offer in return? 

SiXworks offers a unique work culture around our core principles Agility, Security, Innovation, Quality, Collaboration and Inclusivity. 

Together, these six principles form SiXworks' NORTH STAR, guiding the organisation towards success. This is reflected in the raft of benefits available to all our employees. 

In addition to a competitive salary below are some of our benefits: 

• 25 days annual leave + bank holidays. 


• Private Medical Insurance. 


• Life Assurance Scheme 


• Pension scheme


• Professional Development opportunities.


• Cycle to Work scheme. 


• Perks at Work scheme. 


• Discretionary Bonus scheme.   

A word on UK Security Clearance 

Due to the secure nature of the position and working environment, you must have, or be eligible to obtain Security Clearance. 

More details relating to UK Security Clearance can be found here:  

United Kingdom Security Vetting: clearance levels - GOV.UK (www.gov.uk)
 

SiXworks is an IBM subsidiary which has been acquired by IBM and will be integrated into the IBM organisation. SiXworks will be the hiring entity.  By proceeding with this application, you understand that SiXworks will share your personal information with other IBM subsidiaries involved in your recruitment process, wherever these are located. More Information on how IBM protects your personal information, including the safeguards in case of cross-border data transfer, are available here: https://www.ibm.com/privacy