Apply for this job
||Information Systems Accreditor
To support the Lead Accreditor to ensure that designated company and third party supplier’s information systems that process sensitive nuclear information, comply with Government information assurance regulations and requirements, and that the residual risk is acceptable to both the company and its regulators.
To assist in the formal Government accreditation of the company and third party supplier information systems which process sensitive nuclear information to comply with Government Regulations and requirements.
To assist with the preparation of the Risk Management Accreditation Document Set (RMADS) and/or Security Operating Procedures (SyOps) for the company and/or third party supplier information systems
Perform Accreditation assessments on the company and supply chain systems to assess compliance with company policy and regulatory standards
Assist in conducting information risk assessments on the existing company information systems and new business information systems going through the IT demand process
Maintain familiarity with legislation and regulations which are relevant to information systems accreditation in order to provide advice and guidance to the business.
Provide support in the implementation of the HMG Information Assurance Maturity Model (IAMM)
Provide guidance, assistance and awareness on accreditation across the business and supply chain.
The role will be part of the Accreditation Team working with the current Information Systems Accreditor and will report to the Information Systems Lead Accreditor.
Additional information about the process
Essential & Desirable Skills
- Understanding of the technical arrangements of IT systems.
Good interpersonal and communication skills across all levels (with proven ability of dealing with stakeholders).
Experience in interacting with external customers.
Self-motivated and can demonstrate high levels of resilience and integrity.
- Questioning attitude.
Ability to hold people to account.
- Proven IT skills especially the Microsoft suite.
- Driving Licence
CESG Certification Professional (CCP) Scheme Accreditor qualification.
- Certificate in Information Security Management Principles (CISMP).
- Experience in accrediting IT systems to various regulations and standards.
Experience in information risk management and assessments.
Awareness of NISR 2003 and other applicable regulations.
Awareness of the HMG Security Policy Framework
- Awareness of the ONR Classification Policy
Awareness of ISO 27001 and a basic awareness of ISO 27000 series.