Security Assurance Co-Ordinator – Secure by Design (SBD)
Location: Andover/M4 Corridor (as required)
Contract Type: Contract (Outside IR35)
Clearance: DV Cleared
Role Overview
We’re working with an IT Consultancy who are looking for a proactive and detail-oriented Security Assurance Co-Ordinator to support the delivery of Secure by Design (SBD) principles. You’ll play a key role in ensuring security is embedded throughout the development lifecycle, working closely with technical teams, stakeholders, and assurance functions to maintain high standards of cyber resilience.
Key Responsibilities
- Coordinate and support the implementation of Secure by Design practices across projects and programmes.
- Act as a central point of contact for security assurance activities, liaising between technical teams, architects, and governance functions.
- Track and manage security risks, issues, and mitigation plans throughout the delivery lifecycle.
- Ensure security requirements are captured, validated, and integrated into design and delivery documentation.
- Support threat modelling, risk assessments, and security reviews.
- Maintain and update assurance artefacts, including design documentation, risk registers, and compliance checklists.
- Facilitate security sign-off processes and ensure alignment with internal policies and external standards (e.g., NIST 800-53 analysis).
- Promote a culture of security awareness and continuous improvement across delivery teams.
Essential Skills & Experience
- Strong understanding of Secure by Design principles and cyber security best practices.
- Experience working in or alongside security architecture, risk, or assurance teams.
- Excellent organisational and coordination skills, with the ability to manage multiple streams of work.
- Experience working with CAAT.
- Familiarity with risk management frameworks and security governance processes.
- Strong communication and stakeholder engagement skills.
- Ability to interpret technical documentation and translate security requirements into actionable tasks.
Desirable Skills
- Experience with threat modelling tools and techniques.
- Knowledge of cloud security (AWS, Azure, GCP).
- Understanding of regulatory and compliance frameworks.
- Background in cyber security, IT delivery, or project management.