Cyber Security Assurance Specialist

Location: Culham - 2/3 days per week on site Contract: 6 months minimum term contract Hours: 36 hours per week (Monday-Friday) Pay Rate: £40.08 PAYE per hour / £55 Umbrella per hour

About the Role:

Service Care Solutions is currently seeking a Cyber Security Assurance Specialist to deliver security assurance across complex IT and OT environments for a government body. This is a cross-functional role combining advisory and hands-on responsibilities, focused on risk management, security architecture assurance, and embedding secure-by-design practices across platforms and services.

You will operate across hybrid environments including cloud, infrastructure, applications, and operational technology, supporting the secure operation of critical services while ensuring compliance with government and industry assurance frameworks.

Key Responsibilities:

Lead and support security assurance assessments, risk reviews, and architecture assurance activities. Review and advise on security architecture patterns across IT and OT systems. Maintain and manage enterprise risk registers, ensuring risks are clearly articulated, assessed, and treated. Embed risk-aligned security controls across infrastructure, platforms, and services. Support and guide delivery teams in applying secure-by-design principles. Conduct and support vulnerability management, threat analysis, and remediation activities. Interpret CVEs, CVSS scores, and threat intelligence to inform risk decisions. Support internal audit activities and external compliance efforts including: Gov Assure Cyber Assessment Framework (CAF) ISO/IEC 27001 Cyber Essentials (CE and CE+) Provide assurance on the secure operation of core services across cloud and on?prem platforms. Work closely with stakeholders to clearly communicate technical risk to non-specialist audiences. Produce high-quality assurance documentation, reports, and recommendations for senior stakeholders. Essential skills and experience:

Demonstrable experience designing and implementing secure infrastructure and/or cloud architectures. Proven experience conducting risk assessments and maintaining enterprise risk registers. Working knowledge of risk methodologies such as ISO 31000, FAIR, and OWASP risk rating. Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. Experience conducting or supporting security audits and delivering remediation plans. Hands-on experience securing and assessing: Entra ID (Azure AD) Microsoft 365 E5 Azure IaaS / PaaS Windows, Linux, and Unix environments Strong understanding of security tooling, including: SIEM EDR/XDR Vulnerability management platforms Experience with policy development, access control models (RBAC / ABAC), and logging standards. Experience supporting government-mandated assurance activities (e.g. Gov Assure, Secure by Design). Knowledge of Incident Management, SOC operations, SIEM, and vulnerability assessments. Familiarity with ITSM workflows, including change and release management. Experience designing or reviewing secure software supply chain and CI/CD security controls. Strong stakeholder engagement skills with the ability to explain security risk clearly and concisely. Excellent written and verbal communication skills, including presenting to senior stakeholders. Apply Now Service Care Solutions is proud to assist in this recruitment campaign. If you meet the above criteria and would like to be considered, please apply now or reach out directly to discuss the role in more detail.

Harry Greenhalgh Recruitment Lead – Defence Service Care Solutions (url removed) (phone number removed)