CIS Security Program Manager (Cyber Security)
Be among the first applicants.
Brevco Services
Greater London
GBP 100,000 - 125,000
Be among the first applicants.
3 days ago
Job description
CIS Security Program Manager (Cyber Security)
Northwood, United Kingdom | Posted on 03/31/2025
Qualifications:
- Familiarity with NATO Security Directives
- Experience in managing information assurance or security compliance programs
- Experience drafting Standard Operating Procedures and directive policy documents
- Familiarity with Microsoft update and patch management systems, IT security frameworks and governance models, and Common Vulnerability Scoring System (CVSS) v3.X or later standards
- Familiarity with ITIL Version 4 concepts including Configuration Management and Service Asset Management
- Experience with Microsoft Windows desktop operating systems
- Experience with Microsoft Windows server operating systems including Active Directory, Group Policy, New Technology File System permissions, and Dynamic Host Control Protocol
- Experience with key Information Technology concepts including shared storage, clustering, and virtualization
- Familiarity with security and network technologies such as IPv6, Firewalls, Virtual Private Networks, Public Key Infrastructure, Intrusion Detection, and Forensic Appliances
- Familiarity with International Organization for Standardization (ISO)/International Electro-technical Commission (IEC) 27001 framework
- Prior experience of working in an international environment or organizations comprised of both military and civilian elements
DUTIES/ROLE:
- Applies and maintains specific security controls as required by organizational policy and local risk assessments
- Drafts and maintains documents supporting security accreditation for CIS in AOR
- Drafts and maintains CIS Security policy documents
- Liaises with operational partners to ensure security accreditation compliance requirements
- Supports investigation of suspected attacks and security breaches
- Provides detailed and specific advice regarding the application of their specialism to the organization's planning and operations
- Assists in infrequent, limited management of Trellix ePolicy Orchestrator (ePO) and Endpoint Security (ENS) components required by NATO Cyber Security Centre (NCSC) policy on local and remote (deployed) devices in two security domains
- Manages endpoint security components on disconnected and standalone devices in AOR
- Monitors CIS logs for suspicious or anomalous activity and reports as required
- Documents routine processes in Standard Operating Procedures
- Configures and distributes two-factor authentication devices
- Performs trend analysis of routine vulnerability assessments using automated and semi-automated tools, including Nessus Tenable
- Provides vulnerability mitigation advice to stakeholders
- Supports external service providers in management of local boundary protection and cyber security monitoring infrastructure
- Provides CIS Security advice and training, as required
- Executes the incident and change management processes in accordance with the Information Technology (IT) Information Library (ITIL) Version 4 framework
- Contributes to Asset Configuration Patching and Vulnerability Management activities
- Performs other related duties, as required
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
