CrawlJobs Logo

Cyber Security Assurance Senior Manager

des.mod.uk Logo

Defence Equipment & Support

Location Icon

Location:
United Kingdom , Bristol

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

64700.00 GBP / Year
Save Job
Save Icon
Apply Position

Job Description:

Are you ready to take the lead in safeguarding critical systems and infrastructure? At DE&S, we’re searching for a dynamic Cyber Security Assurance Senior Manager who’s ready to make a real impact on both organisational and national security. This is a high-profile opportunity where you’ll head up a talented team of Cyber Security Assurance specialists, collaborating with internal stakeholders, industry partners, and suppliers to deliver secure, resilient solutions. You’ll be the driving force behind robust assurance processes, championing Secure by Design principles and providing expert guidance to senior stakeholders. Your influence will shape projects throughout the entire system life-cycle, ensuring security standards are upheld and innovation thrives across the supply chain. This isn’t just a desk job—it’s a chance to broaden your horizons. With opportunities for international travel and involvement in global projects, you’ll experience variety, challenge, and the chance to build strong professional networks. As a leader, you’ll mentor your team, deliver exceptional results, and develop your own technical, strategic, and leadership skills along the way.

Job Responsibility:

  • Leading teams of Cyber Security Assurance SMEs on large or complex projects, ensuring high-quality work that meets business needs, service levels, security outcomes, risk management activities, applying and maintaining frameworks aligned to the three Lines of Defence
  • Implementing Cyber Security Assurance processes, governance, and procedures, ensuring alignment with business requirements and Secure by Design principles
  • Collaborating, building, and maintaining strong relationships with internal stakeholders, industry partners, and suppliers to support the delivery of secure and resilient systems, and ensuring that security requirements are understood, implemented, and maintained throughout the supply chain
  • Providing guidance and assurance to ensure that systems, platforms, and infrastructure are adequately secured and meet organisational security needs
  • Advising senior stakeholders on Cyber Security Assurance, influencing project direction on Secure by Design and Cyber Security
  • Ensuring compliance with regulatory requirements and relevant legislation, working closely with suppliers and industry to uphold these standards

Requirements:

  • Degree in an IT related area or relevant experience (Lead Criterion)
  • Demonstrable proven experience in information risk management and decision-making
  • Hold OR show a commitment to working towards CompTIA Security+, or Network+, or Certified Information Security Management Principles (CISMP)
  • Core Behaviour: Delivering at pace – CSBC4
  • Core Behaviour: Making effective decisions – CSBC4
  • Technical Competence: Information risk assessment and risk management – Expert level
  • Technical Competence: Secure supply chain management – Practitioner level
What we offer:
  • Civil Service Defined Benefit Pension scheme (employer contributes £18,743)
  • 25 days’ annual leave +1 day a year up to 30 days
  • 8 bank holidays and a day off for the King’s birthday
  • Flexible and hybrid working options
  • Market-leading average employer pension contribution of 28.97%
  • Annual performance-based bonus and recognition awards
  • Access to specialist training and funded qualifications
  • Support for progression
  • Huge range of discounts
  • Volunteering days
  • Enhanced parental leave schemes

Additional Information:

Job Posted:
January 05, 2026

Expiration:
January 19, 2026

Work Type:
Hybrid work
Icon
Defence Equipment & Support - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Cyber Security Assurance Senior Manager

Senior Cyber Security Consultant

As a Senior Cyber Security Consultant at Actica, you will have the opportunity t...
Location
Location
United Kingdom , London; Guildford; Bristol; M4 corridor
Salary
Salary:
Not provided
actica.co.uk Logo
Actica Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience of complex ICT systems in a technical delivery or consulting capacity
  • A good understanding of enterprise information and communications technology
  • The ability to present and justify conclusions to project teams and business stakeholders
  • Proven abilities in delivering to client expectations and requirements
  • Strong verbal and written communications skills
  • Must be eligible and willing to obtain UK Government Security Clearance
Job Responsibility
Job Responsibility
  • Providing security expertise for major system procurements and Agile programmes
  • Identifying, analysing and evaluating information risks across a range of programmes, projects and systems
  • Explaining to risk owners and other stakeholders the causes, likelihood and potential business impacts of information risks throughout the information system lifecycle
  • Authoring and/or supporting the development of security assurance documentation in accordance with risk management frameworks
  • Developing or reviewing new security architectures that mitigate the risks posed by new technologies and business practices
  • Scoping security testing activities, and explaining the results and required remediation
  • May lead assignments and be responsible for supervising direct reports
What we offer
What we offer
  • 25 days of paid leave per annum plus 8 UK bank holidays
  • Discretionary, Performance-Based Bonus Scheme
  • Enrolment in Stakeholder Pension Scheme
  • Cycle To Work Scheme
  • Employee Assistance Programme
  • Electric Vehicle Leasing Scheme
  • Private Medical Insurance
  • Substantial training leading to nationally recognised certifications
  • Mentor support
  • Performance and Development Manager
  • Fulltime
Read More
Arrow Right

Head of Cyber Security

As the Head of Cyber Security at PEXA UK, you’ll play a key role in protecting t...
Location
Location
United Kingdom , Leeds; Thame
Salary
Salary:
100000.00 - 110000.00 GBP / Year
pexa.co.uk Logo
PEXA UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience leading cyber security operations in a regulated or financial services environment (FCA exposure preferred)
  • Strong understanding of security governance, assurance frameworks, and audit processes (ISO 27001, NIST, GDPR, Cyber Essentials Plus)
  • Experience with modern security tooling such as: Cortex XDR / Palo Alto Networks, Splunk (SIEM and dashboarding), Abnormal Security (email security), Prisma Cloud (cloud security posture management), Airlock (application and API security), Nucleus (vulnerability management and reporting)
  • Deep knowledge of incident response, threat hunting, and vulnerability management
  • Excellent stakeholder management and communication skills — able to explain complex risks in simple terms
  • Experience building and mentoring high-performing teams across technical and governance functions
  • Confident working in partnership with global teams and external partners to deliver consistent, secure outcomes
Job Responsibility
Job Responsibility
  • Define and deliver the UK cyber security strategy and roadmap aligned with business and group objectives
  • Act as the senior security authority for PEXA UK, Smoove, and Optima Legal
  • Partner with the Group CISO, UK CTO, and Risk functions to align frameworks and initiatives
  • Lead and mentor a multi-disciplinary team across SOC, engineering, and information security
  • Represent UK security priorities in leadership forums, lender assurance discussions, and governance reviews
  • Oversee SOC operations ensuring timely threat detection, response, and resolution
  • Continuously improve detection and response capabilities using Cortex XDR, Abnormal Security, Splunk, and Nucleus
  • Manage vulnerability management end-to-end, from scanning and prioritisation to remediation tracking
  • Coordinate with third-party partners such as Blazeguard and CCX to ensure effective service delivery
  • Oversee secure configuration, endpoint management, and patch compliance across hybrid environments including Azure and AWS
What we offer
What we offer
  • Tailored personal and professional learning and development programs
  • Holistic wellbeing support
  • Support for creating an ideal work/life blend
  • Fulltime
Read More
Arrow Right

Senior System Security and Information Assurance Engineer

The Senior PAM Engineer will play a critical role within Line of Effort 2, respo...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Top Secret clearance with SCI eligibility
  • Master’s degree (MA/MS) in Cybersecurity, Information Technology, Computer Science, Engineering, or related field
  • 10+ years of professional experience in cybersecurity, systems engineering, or information assurance
  • Meets Cyber Engineer – Senior labor category requirements, including independent execution of all functional duties and support to mission-critical program elements
  • DoD 8570 IAT Level II certification or higher (e.g., Security+ CE, CCNA Security)
  • Deep expertise in Privileged Access Management (PAM) architectures and Zero Standing Privilege concepts
  • Hands-on experience implementing Just-In-Time (JIT) access workflows
  • Experience integrating PAM solutions with Active Directory, SIEM platforms (Splunk), and Identity Governance (IGA) tools
  • Experience producing technical documentation to support RMF and ATO processes (LLDs, SSPs, SOPs)
  • Ability to lead or oversee the efforts of less senior staff as required by program needs
Job Responsibility
Job Responsibility
  • Lead the installation, configuration, and technical implementation of an enterprise Privileged Access Management (PAM) solution (Delinea-focused) across multiple network enclaves
  • Discover, inventory, and onboard privileged user, administrator, and service accounts into a secure credential vault
  • Design and enforce policies for Just-In-Time (JIT) access, session monitoring, and session recording to achieve zero standing privileges
  • Develop scripts and API-based integrations between the PAM solution, Splunk SIEM, and Identity Governance (IGA) platforms
  • Support RMF accreditation activities by developing Low-Level Design (LLD) documents, System Security Plans (SSPs), and Standard Operating Procedures (SOPs)
  • Support Authority to Operate (ATO) efforts through security control implementation and technical validation
  • Lead enterprise rollout of PAM policies from pilot groups to full operational enforcement
  • Collaborate with Zero Trust architects, identity teams, and cyber engineers to ensure alignment with enterprise security architecture
Read More
Arrow Right

Senior Cyber Range Architect

Barbaricum is currently seeking a highly skilled and experienced Senior Cyber Ra...
Location
Location
United States , Muscatatuck
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must possess an DoD active TS/SCI Clearance
  • Bachelor’s degree required
  • Must meet DOD 8570.01-M IAT III Certification requirements
  • Minimum 7 years of experience in Cyber SME/Cyber Architect roles or similar, with at least 3 years in cyber range or computer test-bed environments
  • Expert knowledge in computer network design and configuration (routing, switching, firewalls, DNS, Active Directory, VPNs, VLANs, SANs) across both bare metal and virtualized systems
  • Proficiency in automation, provisioning, imaging, orchestration, and configuration management tools, including Ansible, Chef, FOG, Project, Python, and Bash scripting
  • Demonstrated expertise in cloud, physical, and virtual network architecture, engineering, and infrastructure monitoring
  • Extensive experience with hypervisors (VMware, KVM, Xen) and server operating systems (Windows Enterprise, Linux) including an understanding of network vulnerabilities, attack vectors, and mitigation techniques
  • Experience with a broad range of technology including camera systems, ICS/SCADA, IoT devices, and RF communications devices
Job Responsibility
Job Responsibility
  • Oversee all aspects of system integration, management, configuration, operation, testing, and scheduling of the CTEP platform
  • Develop and update event network designs, integrate hardware and software, and determine baseline configurations for training and exercises
  • Support Information Assurance requirements, develop and implement range reset procedures
  • Assist in the creation of training scenarios tailored to the needs of the partners utilizing the CTEP platform
  • Maintain and update local design documents and configurations, collaborating on the evolution of CTEP capabilities
  • Conduct training on CTEP usage and configuration, and assist in the implementation of training, exercise, and event virtual enclaves
  • Own the technical operations of the CTEP environment, managing multiple projects to ensure alignment with strategic objectives
Read More
Arrow Right

Risk & Assurance Manager - IT & Infosec

This role focuses on managing and enhancing the IT and Information Security risk...
Location
Location
United Kingdom , Manchester; Marlow
Salary
Salary:
Not provided
softcat.com Logo
Softcat
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of experience in second-line risk management or internal audit, with a strong focus on IT or Information Security
  • Experience in consultancy or professional services, with a proven ability to support complex transformation or change programmes is preferred
  • Demonstrated leadership in delivering IT risk or audit initiatives, including managing projects, mentoring team members, and driving outcomes
  • Strong knowledge of industry frameworks and standards, such as ISO 27001, NIST, CIS Controls, and regulatory requirements like GDPR
  • Proven ability to engage and influence stakeholders across IT, Information Security, and business functions, building trusted relationships at all levels
Job Responsibility
Job Responsibility
  • Partnering with senior IT, Security, and business leaders to embed risk management practices into operational processes and strategic initiatives
  • Owning and maintaining IT Risk and Control Matrices (RCMs), ensuring they remain current, comprehensive, and aligned with industry standards and audit expectations
  • Reviewing effectiveness of first line functions in testing and validation of key IT controls (e.g., access management, change control, incident response, vulnerability management), ensuring effectiveness and consistency
  • Leading in the review and enhancement of IT and infosec risk and control frameworks (e.g., ISO 27001, ITIL, ISO22301, NIST), ensuring alignment with business objectives and regulatory requirements
  • Coordinating and representing IT risk in internal, external audits and certification processes (e.g., ISO 27001, Cyber Essentials, ISO22301, etc.), acting as the primary point of contact
What we offer
What we offer
  • Pension
  • Share incentive plan
  • Life Assurance
  • Healthcare
  • Holiday
  • Trips
  • Vouchers
  • Partner/family Benefits
  • Perklife
  • Maternity, Paternity and Adoption support
  • Fulltime
Read More
Arrow Right

Senior Information Security Consultant (QSA)

PGI is a global consultancy that helps organisations build digital resilience. W...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
pgitl.com Logo
Protection Group International
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven relationship management skills and experience in Information Assurance consultancy
  • Qualified Security Assessor (QSA) experience with valid PCI-DSS QSA accreditation with a minimum of 2 years of experience performing PCI DSS compliance consultancy
  • Familiarity with PCI DSS and NIST CSF
  • Experience in conducting risk assessments, cyber security maturity evaluations, and remediation strategies
  • Strong communication skills, able to present to clients and senior stakeholders
  • A collaborative, solutions-oriented mindset with excellent time-management skills
Job Responsibility
Job Responsibility
  • Provide expert guidance to clients, supporting both pre-sales and delivery, and establishing trusted advisor relationships to drive compliance and security improvements
  • Lead and deliver hands-on PCI DSS compliance consultancy, performing assessments, gap analyses, and remediation strategies tailored to client needs
  • Act as a subject matter expert in PCI DSS compliance and Governance, Risk, and Compliance (GRC), advising clients on regulatory compliance, risk management, and information security best practices
  • Contribute to PGI’s consultancy growth by aligning services with emerging trends and industry standards. Drive PGI’s accreditations and assist with maintaining ISO 27001, PCI DSS and data protection compliance
  • Mentor junior team members, contribute to the recruitment process, and oversee third-party relationships to ensure project profitability and delivery quality
  • Stay ahead of industry trends, emerging security threats, and best practices to maintain professional growth and continuously improve PGI’s consultancy offerings
Read More
Arrow Right

Cyber-Security Technical Administrator

This position is for a Cybersecurity Technical Administrator supporting the ALTE...
Location
Location
United States , Alexandria
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Mid to senior level Cybersecurity Technical Administrator experience in a cloud environment
  • DoD 8570.01-M IAT level II certification is required
  • Resource must possess both Baseline and Computing Environment certification as defined in DoD Instruction 8570.01-M
  • Strong verbal and written communication skills
  • Understanding of DOD Risk Management Framework Assessment & Authorization (RMF A&A), FedRAMP, the DOD cloud provisional authorization (PA) process and the processes to successfully acquire and maintain an Authorization to Operate (ATO)
  • Working knowledge of the Federal Risk and Authorization Management Process (FedRAMP), cloud security information impact levels (IL), the differences between an ATO and P-ATO, the differences between a CSO and CSP, and the processes to successfully acquire, maintain and support DOD cloud accreditation
  • Experience automating routine administrative tasks desired
  • Understanding of network, storage, server and application technologies
  • Strong understanding of common cyber threat patterns, indicators of compromise and defenses
  • Working knowledge of DoD STIGs and IA Vulnerability Management (IAVM)
Job Responsibility
Job Responsibility
  • Serve as overall subject matter expert on Cybersecurity Technical Administrator technology and market capabilities/trends
  • Conduct security scans against the organization’s cloud-deployed infrastructure, produce and interpret compliance reports
  • Validate technical security controls are in place for operating systems, applications and network appliances, and recommend enhancements
  • Review proposed configuration changes for security impact
  • Operate endpoint-protection mechanisms, including high-level reporting and day-to-day administration activities
  • Work between technical and policy teams to implement, maintain and monitor technical security configuration controls, including: STIG’s, SRG’s and other industry security hardening guidance
  • Work between technical and policy teams to successfully implement and manage requirements for maintaining cloud P-ATO, ATO and security control inheritance capabilities
  • Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements
  • Use results of vulnerability scans to determine vulnerabilities and develop operational plans to remediate or mitigate vulnerabilities as they are discovered
  • Install, operate and maintain Army Endpoint Security System
Read More
Arrow Right

Cyber-Security Policy Administrator

This position is for a Cybersecurity Policy Administrator supporting the ALTESS ...
Location
Location
United States
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • DoD 8570.01-M IAM level II certification
  • CompTIA Security+
  • Computing Environment (CE) Certification (i.e., MCSE, Server+, etc.) – can be waived for 30 days after project join date
  • Mid to senior level Cybersecurity Policy Administrator experience in a cloud environment
  • Strong verbal and written communication skills
  • Experience effectively managing multiple large-scale projects
  • Understanding of network, storage, server and application technologies
  • Working knowledge of DoD STIGs, and IA Vulnerability Management (IAVM)
  • Information Assurance Engineer – Senior: Masters +10yrs, or Bachelors +12yrs
  • Information Assurance Engineer – Intermediate: Bachelors +5yrs or Associates +7yrs
Job Responsibility
Job Responsibility
  • Serve as overall subject matter expert on Cybersecurity Policy Administration
  • Work between technical and policy teams to implement, maintain and monitor technical security configuration controls, including: STIGs, SRGs and other industry security hardening guidance
  • Work between technical and policy teams to successfully implement and manage requirements for maintaining cloud P-ATO, ATO and security control inheritance capabilities
  • Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements
  • Act as the ISSO for hosted systems, assuming the responsibilities as outlined in AR 25-2
  • Assist hosted customers in obtaining and maintaining RMF for DOD IT and other certifications as required
  • Update and/or assist the hosted system’s personnel in updating artifacts of the accreditation package and store the artifacts in organizationally defined repository
  • i.e., system diagram (logical and physical) Hardware/Software/Firmware Inventory, Interface & Ports, Protocols and Services listing, etc.
  • Assist in the preparation of network infrastructure specifications or designs incorporating required information security features
  • Review and evaluate Information Systems Design Plans, Continuity of Operation Plans, Communication Plans, engineering change proposals and configuration changes for compliance with relevant security regulations, policies and best industry practice
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy