-
Job Description
Introduction
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.
You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
Your Role and Responsibilities
We are seeking an experienced Information Assurance professional to join our team. The ideal candidate will have a strong background in implementing and maintaining Information Security Management Systems (ISMS) based on ISO 27001, ISO 27002, ISO 27005, UK Government Secure by Design and other industry leading frameworks, such as NIST.
You will be responsible for developing, implementing and overseeing the implementation of Security Management Plans (SMP) and ISMS in large public sector and defence contracts. Key responsibilities will include:
If you are passionate about success, consulting and cybersecurity, with both your career and solving clients’ business challenges, this role is for you.
Sure you are ready to take your career to the next level and shape the future of technology with us, and we want to hear from you! Please submit your resume outlining your relevant experience and why you're passionate about joining our team. We look forward to welcoming you to the IBM family.
Required Technical and Professional Expertise
Preferred Technical and Professional Expertise
Security Expertise:
#J-18808-Ljbffr
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.
You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
Your Role and Responsibilities
We are seeking an experienced Information Assurance professional to join our team. The ideal candidate will have a strong background in implementing and maintaining Information Security Management Systems (ISMS) based on ISO 27001, ISO 27002, ISO 27005, UK Government Secure by Design and other industry leading frameworks, such as NIST.
You will be responsible for developing, implementing and overseeing the implementation of Security Management Plans (SMP) and ISMS in large public sector and defence contracts. Key responsibilities will include:
- Lead the development, implementation and maintenance of ISMS aligned with client requirements, leading standards and frameworks.
- Lead in the implementation of UK Government Secure by Design principles within a Ministry of Defence (MoD) context,
- Lead activities to assure the ongoing compliance of IBM services with MoD key documentation, including JSP 440 (Defence Manual of Security) and JSP 604 (Network Rules and Regulations).
- Conduct risk assessments, identify vulnerabilities, and lead the development and implementation of risk management strategies with Senior Leadership, including the development of appropriate risk treatment plans.
- Stay up-to-date with the latest security trends, threats, and best practices in the defence sector.
- Analyze market trends, competitive landscapes, and emerging technologies to inform strategic decision-making.
- Collaborate with senior leadership to define organizational priorities and strategic objectives.
- Design and facilitate workshops, training sessions, and stakeholder engagements to foster a culture of risk awareness and mitigation.
If you are passionate about success, consulting and cybersecurity, with both your career and solving clients’ business challenges, this role is for you.
Sure you are ready to take your career to the next level and shape the future of technology with us, and we want to hear from you! Please submit your resume outlining your relevant experience and why you're passionate about joining our team. We look forward to welcoming you to the IBM family.
Required Technical and Professional Expertise
- Hands-on experience of implementing UK Government Secure by Design principles in the MoD, either through direct MoD experience, other defence projects or with a MoD provider.
- Demonstratable understanding of the MoD organisation, its process flows, and key stakeholders involved in information assurance.
- Minimum of 5 years of experience in delivering cybersecurity Assurance/Information Assurance, including the development and maintenance of an ISMS.
- Proven experience in strategic planning, risk management, or management consulting within the technology sector.
- Strong analytical skills with the ability to translate complex data into actionable insights.
- Excellent communication and presentation skills, with the ability to influence stakeholders at all levels of the organization.
- SC Clearance (valid current SC clearance is preferred, DV desirable)
Preferred Technical and Professional Expertise
Security Expertise:
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related fields.
- Professional certifications such as CISSP, CISM, or CRISC, are highly desirable.
- In-depth knowledge of ISO 27001, ISO 27002, ISO 27005, and other relevant ISO standards.
- Familiarity with NIST frameworks, such as NIST SP 800-53 and NIST Cybersecurity Framework.
- Knowledge of MoD key documentation, including JSP 440 and JSP 604.