eDV Cleared - Information Assurance Security Manager
On site
Gloucestershire, United Kingdom
Freelance
07-03-2025
Job Specifications
iO Associates are working closely with a growing consultancy in the NS&D sector, seeking an experienced Information Assurance Security Manager to strengthen their cybersecurity posture.
This is an initially 12 months contract with the potential to be extended beyond. Due to the exciting nature of the role, you must hold and active UK*C DV Clearance to be eligible.
The role requires a proactive professional to develop and enforce security policies, risk management strategies, and compliance frameworks while collaborating with cross-functional teams.
Key Responsibilities:
Policy & Compliance
Develop, implement, and maintain information assurance policies, standards, and procedures.
Ensure compliance with ISO 27001 and other relevant regulatory requirements.
Oversee internal and external security audits to assess compliance.
Risk Management
Conduct risk assessments to identify, evaluate, and mitigate security threats.
Develop and implement risk mitigation strategies to enhance security resilience.
Security Infrastructure Management
Oversee the design, implementation, and maintenance of security controls, including:
Firewalls
Intrusion detection & prevention systems
Other critical security technologies aligned with the National Technical Authority standards.
Work closely with IT teams to secure network infrastructure, servers, and endpoints.
Incident Response & Investigation
Develop and maintain a robust incident response plan.
Lead and coordinate incident investigations before transitioning to a Business-as-Usual (BAU) function.
Security Awareness & Training
Develop and deliver security awareness programs to educate employees on best practices.
Work with Subject Matter Experts (SMEs) to ensure a security-conscious workforce.
Collaboration & Communication
Work closely with internal departments to ensure cohesive security strategies.
Communicate security initiatives, risks, and compliance updates to senior management.
Team Leadership
Manage or lead a team of security professionals to ensure the successful implementation of security policies and procedures.
Provide guidance, mentorship, and support to team members, fostering a collaborative and high-performance environment.
Key Requirements:
Proven industry experience in IT Quality Assurance, Information Security, and Assurance.
Certified Information Security Manager (CISM) or an equivalent qualification.
ISO 27001 Auditor/Implementer certification is essential.
Strong understanding of cybersecurity principles, risk management, and compliance frameworks.
Experience managing or leading a team of security professionals.
Excellent communication and collaboration skills.
About the Company
Specialising in recruitment across the tech, digital, engineering, and government and defence sectors, iO Associates have extensive experience in securing the best talent to create the products and infrastructure of the future. Our dedicated team of highly experienced and knowledgeable consultants provide bespoke solutions, working with businesses to find the perfect fit across contract, interim, search, and permanent appointments. We offer end-to-end support, from Statements of Work and IR35 determination processes to full... Know more
Related Jobs
- Company Name
- Experis IT
- Job Title
- Network & Security Engineer
- Job Description
- Role: Network & Security Engineer Location: Central London (Hybrid - 3 days per week onsite) Duration: 3 Months Day rate: £500 inside IR35 Role Description: Responsible for installing, maintaining and supporting network communication within the business. Essential Qualified to CCNP Security, CCSE or equivalent level Able to work and troubleshoot IPSec & SSL VPNs Experience of working on Firewalls like Juniper, CheckPoint, PaloAlto, MS Azure, Barracuda WAF and Barracuda Firewall. Experience of working on network switches, proxies, VSS. Managing and troubleshooting Microsoft Azure networks Experience of Wireless Networks. Provide 3rd level ICT Network Support within GLD Ensure all network related documentation is current and updated ITILv3 qualified to Foundation Level Manage systems security in accordance with ICT Security Standard (IS027001) Very strong customer focus & ability to build rapport with clients as well as peers Confidence and presence to deal with outsourcing, customers, suppliers and colleagues at junior and higher level Able to work under pressure and perform as a Leader, work to get an excellent understanding of business requirements Ability to define and meet deadlines and targets set as Business Analysis, well versed with reporting, documentation and full project lifecycle Experience of working to tight SLA/OLA's and deadlines Experience of change management process Working knowledge of MS Office, Visio and Project Ability to apply existing knowledge to resolve issues on unfamiliar systems Able to gather and analyse information Able to determine service impacts and risks Able to understand and articulate complex ideas Logical and rational approach to problems Able to prepare and deliver management briefings Excellent written and oral communications skills and able to communicate at all levels, technical and non-technical Ability to liaise and manage 3rd party suppliers Advantageous Knowledge of Websense Proxy TrendMicro Proxy PaloAlto Firewalls Knowledge of HP 3PAR technologies and iSCSI Knowledge of HP Converge System Cisco MDS Switches
- Company Name
- Adarma Security
- Job Title
- Senior Security Engineer
- Job Description
- Who we are We’re a company on a mission to protect the promise of cyber resilience. From banking and retail to food delivery and manufacturing, our team of passionate cyber defenders are committed to protecting the things that matter. We stand side-by-side with our customers every day providing innovative cybersecurity solutions that protect against threats, mitigate risk and deliver outcomes that make a remarkable difference. We want to defend cyberspace with people who share our passion for stopping cyber criminals. We empower access to equal opportunities, hiring people and their potential, not just a job description. What you will do We are actively recruiting for a Senior Security Engineer on a 6-month contract, Inside IR35, to act as a Darktrace subject matter expert for one of our clients. In this role, you will: Provide customers with support to develop and enhance their security controls and capabilities. This will include: Performing data analysis to determine how best to meet desired security controls Testing to ensure that the proposed technical solution works and resolving any issues in advance of go live into the production system Configure, maintain and enhance the toolset in accordance with the customer’s needs Create documentation such as policies, processes, toolkits, dashboards and management information to support the services offered to customers. Apply your high level of technical knowledge and experience to prepare and deliver technical presentations to customers and audiences at external conferences and events. Provide subject matter expertise to projects by proactively identifying and assessing gaps in security controls and providing / implementing appropriate technical solutions to address customer requirements. Share appropriate information relating to your area of expertise with both the internal and external technical community. Provide technical support to security teams as required in interpreting data to identify security issues, trends, possible security flaws and misconfigurations. What you will bring Experience working with Darktrace, including: Maintaining and performing upgrades on physical appliances, network sensors and the core platform. Provide insight and support the SOC team on incident triage. Optimisation and tuning of models, policies and configurations. Review current configuration, network settings and Antigena to ensure Darktrace is operating at optimal level Adaptable and willing to work on multiple tooling/platforms Perform risk assessments and recommend mitigation strategies for identified risks. SIEM/SOAR knowledge such as Splunk and Microsoft Sentinel Knowledge of industry best practices for cloud and cybersecurity Stay updated on current threat intelligence, trends, TTPs, and vulnerabilities. Control validation and threat assessments using AttackIQ.
- Company Name
- ApplianSys
- Job Title
- Contract Test Engineer - Linux/Python/Network Protocols
- Job Description
- ApplianSys is a UK-based entrepreneurial company specialising in network appliance products, including CACHEbox, DNSbox, and EDUGATEbox. With customers in over 160 countries, we are recognised globally for our excellence in delivering tailored solutions for challenging markets. As we continue to grow, our mission remains to achieve and sustain world-class performance across all facets of our business. We are entering a period of significant change in our engineering processes, prioritising automation, innovation, and AI to transform our product development cycle. This dynamic environment requires agility, adaptability, and cutting-edge expertise to ensure our products meet the highest standards of quality and performance in the coming years. ROLE OVERVIEW ApplianSys seeks a Contract Testing Engineer to spearhead transformative improvements in our QA and testing processes. This contractor role, spanning 6-12 months (with a 6+6 structure), aims to implement step changes in automation, testing methodologies, and AI-driven testing solutions. The successful candidate will collaborate closely with the development team to radically enhance our testing efficiency and product reliability. This is not a routine or permanent role but a dynamic and high-impact opportunity suited to individuals motivated by variety and innovation. KEY RESPONSIBILITIES Drive Transformational QA: Implement advanced testing methodologies and tools, focusing on automation and AI integration to redefine our testing approach. Comprehensive Testing: Conduct robust testing of CACHEbox, DNSbox, and EDUGATEbox products, ensuring their functionality, reliability, and performance in diverse scenarios. Automation Leadership: Design, develop, and deploy automated testing frameworks, streamlining QA processes and improving scalability. Collaborative Problem Solving: Work with developers to identify and resolve issues, ensuring continuous product improvement. Documentation & Feedback: Deliver detailed testing reports and actionable recommendations to drive iterative development. Best Practices Adoption: Establish and enforce QA best practices, including root cause analysis, issue tracking, and version control. Continuous Improvement: Stay ahead of industry trends in QA, automation, and AI tools, bringing innovative ideas to the team. REQUIRED SKILLS & EXPERIENCE Essential: Proven experience in delivering automation-driven QA transformation projects. Expertise in automation frameworks and tools, such as Selenium, pytest, and Python’s unittest. Deep understanding of networking protocols (HTTP, DNS, DHCP) and Linux systems. Strong knowledge of web application technologies (HTML, JavaScript, CSS). Demonstrated ability to collaborate with technical teams and deliver high-quality solutions. Proactive mindset with a focus on results and efficiency. Desirable: Exposure to AI-driven testing tools and methodologies. Experience with open-source technologies such as Squid, ISC Kea, and nginx. Hardware testing experience and familiarity with component selection processes. Track record of implementing QA improvements, particularly in caching or DNS environments. CONTRACT STRUCTURE Duration: 6-12 months (6+6 structure, with potential for extension based on outcomes). Location: Coventry, UK. Flexibility for remote work can be considered. Compensation: Competitive day rate commensurate with experience and qualifications. THE IDEAL CANDIDATE We are seeking a high-performing individual with a strong track record in transformational QA projects. The role is perfect for someone who thrives in dynamic environments, embraces variety, and seeks to leave a lasting impact through innovation and automation. This opportunity aligns with professionals motivated by change and improvement rather than long-term, routine roles. NEXT STEPS If you’re a proactive and skilled QA professional eager to take on a high-impact contract role, we encourage you to apply. Join us in reshaping the future of testing and quality assurance at ApplianSys.
- Company Name
- Experis IT
- Job Title
- IAM Security Architect (OCI)
- Job Description
- Role: IAM Security Architect (Oracle Cloud Infrastructure) Location: London (Hybrid - 2 days per week onsite) Duration: 3 months Day rate: Negotiable inside IR35 Active SC clearance required Role Description: We are looking for a seasoned Oracle Cloud Infrastructure (OCI) IAM Security Architect to join our dynamic team. In this role, you will play a pivotal part in designing, implementing, and managing secure identity and access management solutions on Oracle Cloud. Key Responsibilities:Cloud IAM Architecture Design: Lead the design and development of robust, scalable, and secure IAM solutions using Oracle Cloud Infrastructure services such as Identity and Access Management (IAM), Key Management Service (KMS), and Directory Service. Security Strategy & Compliance: Develop and maintain a comprehensive IAM strategy that aligns with Oracle's cloud security best practices and meets industry standards and regulatory requirements, as well as aligning with client's business needs. Secure Deployment & Integration: Ensure secure deployment and integration of IAM solutions with existing OCI services and third-party/business applications. Project Management: Oversee the life cycle of IAM projects from initiation through to deployment and maintenance, ensuring timely delivery within budget and adherence to security guidelines. Risk Assessment & Mitigation: Regularly evaluate the security posture of IAM systems, identify potential risks, and implement effective mitigation strategies. Team Leadership & Mentoring: Provide technical guidance and mentorship to the wider security and technical teams, fostering a culture of continuous learning and innovation. Documentation & Reporting: Create and maintain accurate and up-to-date documentation of IAM architecture, policies, procedures, and configurations. Present designs for reviews and provide regular updates to senior management. Qualifications:Experience of working in UK public sector with valid/current UK Security Clearance. Minimum of 7 years of experience in a similar role, specifically with Oracle Cloud Infrastructure. In-depth knowledge of OCI services, particularly IAM, KMS, and Directory Service, and their implementation in secure, multi-tenant environments. Solid understanding of identity and access management principles, protocols, and standards, including OAuth, OpenID Connect, and SAML. Familiarity with security frameworks like NIST, ISO 27001/27002, CIS, and SOX. Proficient in Scripting languages (Python, Java, etc.) and familiar with cloud automation tools and DevOps practices. Outstanding problem-solving skills, excellent communication abilities, and proven capability to work effectively with teams at all levels. Oracle Certified Professional, Oracle Cloud Infrastructure - Identity and Access Management (IDCS) is highly desirable. Knowledge of integration patterns between oracle integration cloud and oracle fusion application an advantage A bachelor's degree in Computer Science, Information Systems, or a related field. Advanced degrees are a plus. If you're passionate about cloud security and looking to apply your expertise in designing and managing secure IAM solutions, this is an exciting opportunity to contribute to the future of cloud security. Join our team and help shape the security framework of our Oracle Cloud Infrastructure.