Security Risk Lead - SC cleared

Security Risk Lead

+6 months +

+SC cleared

+Remote working - occasional travel to Corsham

+Inside IR35

+£550 - £590 a day

Skills:

+ Proven demonstrable experience operating in a security risk role

+MOD experience

+SC clearance

We are seeking an experienced Security Risk Lead to lead cyber risk management and assurance across a high-profile Defence programme. Reporting to the Programme CISO, you will embed Secure by Design principles across the full system lifecycle, ensuring compliance with JSP 440 (Leaflet 5C), JSP 453 and alignment to the National Institute of Standards and Technology (NIST) RMF and CSF frameworks.

Key Responsibilities

Lead continuous risk management within agreed risk appetite.

Develop and maintain security artefacts (SMP, SAL, Risk Assessments, IR & Vulnerability Plans).

Oversee governance, architectural security approvals and compliance with MOD policy.

Manage CHECK Health Checks, Secure by Design assurance, and audit remediation.

Engage senior stakeholders and translate cyber risk into business impact.

Essential Experience

Proven cyber security risk or governance background.

Strong knowledge of NIST RMF/CSF and MOD policy (JSP 440 & 453).

Experience delivering risk assessments, health checks and remediation.

Stakeholder management within MOD or Government environments.

Desirable

CISSP, CISM, CRISC, CGRC or Chartered status.

Deliverables are managed on a Sprint basis, with full ownership of security documentation, assurance activity and continuous monitoring across the programme lifecycle.

If you'd like to discuss this Project Security Lead role in more detail, please send your updated CV to (url removed) and I will get in touch