IT Security Officer

  • Location

    Warrington, Cheshire

  • Sector:

    Cyber Security

  • Job type:


  • Salary:

    £450 - £500 per day

  • Contact:

    Samantha Clinch

  • Contact email:


  • Job ref:


  • Published:

    4 months ago

  • Duration:

    6 Months +

  • Expiry date:


  • Start date:


IT Security Officer - Warrington - 6 Months +

The ITSO is responsible for ensuring that appropriate security management actions are taken to protect the confidentiality, integrity and availability of the information stored and processed on IT and OT systems. The ITSO forms part of the Cyber Security and Information Assurance (CS&IA) Team and reports to the Chief Information Security Officer (CISO).

Specific Responsibilities
* Attend project security working groups for systems in development as required.
* Provide accreditation support to projects as required, including the production of accreditation document sets, RMADS, risk assessments and risk balance cases.

* Provide IT Security advice and guidance to the IT Department, ensuring that security is implemented by design.
* Ensuring that security measures are implemented on the network are in accordance with the Risk Management Accreditation Document Set (RMADS) and HMG Security Policy Framework (SPF).
* Authorise changes to user accounts, including administrators and 'super-users' and minor changes to systems.
* Coordinate with external assurance providers for the delivery of IT Heath Checks against IT and OT as required.
* Coordinate internal technical CS&IA assurance activities.
* Coordinate the required remedial actions for systems as vulnerabilities are highlighted.
* Assist in the implementation of ISO27001 Controls
* Develop IT Security related education literature and activities in support of the wider continual development of security culture.
* Own the IT Disaster Recovery Plan, operating under the Resilience Framework.
* Assume the role of Crypto Custodian for the NCSC Civil Crypto Account.
* Ongoing liaison with the outsourced Security Operations Centre (SOC) provider, acting as primary point of contact and:
* Ensuring that the service provider maintains the appropriate levels of agreed service,
* Ensuring that the SOC is fully integrated into Incident Management Framework,
* Managing routine communications with the SOC on behalf of the business
* Working with the SOC to resolve security incidents in accordance with Incident Management Framework,
* Following up on audit logs provided by the SOC where misuse or unexpected activity is suspected,
* Acquiring information from the SOC in order to provide weekly and monthly status information
* Security and IT Departments on the performance of the network.
* When required, support incident management activities outside of core working hours.
* Assist in the investigation of security incidents involving IT or OT, ensuring that forensic actions are conducted as appropriate and the chain of evidence has been maintained.

IT Security Officer - Warrington - 6 Months +