Job Description

Information Security Assurance Specialist
Contract - Inside IR35 - 500 - 660 P/D
Hybrid - Occasional Travel to Locations in SE

Please only apply to this role if you can commit to occasional travel to multiple locations within the South East.

I'm working with with one of our key clients who after undertaking a widespread overhaul of their 3rd party contract clauses have an urgent requirement for 2x Information Security Assurance Specialists, one role will be primarily working with an IT environment and one within their OT estate.

Requirements for the role:
- Previous experience as a Information Security Assurance Specialist

- Familiar and knowledgeable around CAF

- Great communication - You need to be clear, concise and able to handle 'push back' from stakeholders

- Strong Negotiation skills

Your responsibilities focus on enhancing cybersecurity measures within supplier contracts, especially in relation to the NIS enhanced Cyber Assessment Framework (eCAF) and NIS 2 regulations.

1. Cybersecurity Clause Review:

   • Update standard cybersecurity clauses to align with eCAF and best practices.

2. Supplier Security Posture Assessment:

   • Assess the cybersecurity posture of our suppliers.
   • Review existing supplier risk assessments and contracts to identify gaps.

3. Contract Recommendations:

   • Suggest modifications to supplier contracts to strengthen cybersecurity provisions.
   • Review and propose changes to contracts and SLAs to ensure compliance with eCAF and NIS 2.

4. Compliance Monitoring:

   • Develop systems and processes for monitoring adherence to cybersecurity clauses.
   • Conduct regular reviews of suppliers to ensure they meet cybersecurity standards.

5. Collaboration:

   • Work with third parties, risk management, procurement, and legal teams to implement contractual changes.

If this role sounds like a good fit, then please apply below!