Security Analyst/Assurance Manager (SC Cleared) 7 Months, London

Smartsourcing are looking for a.* Security Analyst/Infrastructure Assurance Manager.* LONDON, GOVERNMENT/SC CLEARED Duration - 7 monthsSC Security clearance is required. Government Sector

Responsibilities:
Assurance of all aspects of the delivery of Enterprise Infrastructure Services (EIS) - capacity/availability performance
Providing of appropriate indepth technical subject matter expertise ensuring business and end users receive effective and efficient EIS.
Driving and influencing the provision of EIS to ensure their overall functionality and performance meet business requirements; and changes do not adversely affect existing services.
To represent the authority to ensure compliance of the EIS services; including the management of non-compliance, the resolution of conflict and the associated risk management.

Mandatory
Practical industry experience of providing technology and security specific consultancy services Ability to interact with all levels of management and users in a confident and authoritative manner.
Good understanding of industry and government specific security standards

Desirable
BSC/MSC in computer science or information security
CISSP
CLAS
TOGAF 9
ITIL V3

Providing ad-hoc security support services to existing accreditation and security projects/programmes and BAU environments.
Supporting the IAO in the day to day review of risk statements and advise on risk management
Supporting accreditation streams to develop and define security accreditation requirements, such as ITHC Scopes, RMADS and SIRO Submissions.
Reviewing and assessing technical architecture of solutions in order to identify appropriate levels of compliance against relevant CESG, policies and frameworks as well as industry best practice. (IAS, GPG, AP).
Good knowledge of CESG and HMG standards and compliance, including Good Practice Guides (GPG), vulnerability management, patching and Security Policy Framework (SPF).
Knowledge of ISO/IEC 27001:2005 standard for an ISMS,ISO27002 code of practice (controls implementation). Practical experience with good technical background of enterprise secure infrastructure architecture and designs.
Good understanding of, penetration testing and incident management.
Ability to work with outsourced supplier security personnel to deliver services in accordance with agreed SLAs. 
Familiarity with key technologies such as Active Directory, LDAP, web application Firewall, Cisco ASA, Juniper, DNS, DHCP, Proxy Servers.