Cyber Security Assurance Specialist
| Job Type | Contract |
| Location | Oxfordshire/ Hybrid |
| Area | South East, UK |
| Sector | Defence & Nuclear |
| Salary | £55 Per Hour |
| Start Date | April 23rd, 2026 |
| Advertiser | Priyanka Dubey |
| Job Ref | 7434-PSR1JP00100899 |
| IR35 | Inside |
| Security Clearance | SC |
- Description
- The Client:
A government department client is looking for a Cyber Security Assurance Specialist to join them on an 8 month contract. This position will be based in Oxfordshire/ Hybrid.
Job Summary:
This is a cross-functional role with both advisory and hands-on responsibilities, focusing on security assurance, risk management and supporting architecture reviews, vulnerability management, risk assessments, cyber defence posture, driving technical assurance, and embedding risk-aligned security controls across IT and OT systems and secure-by-design practices. You will work across hybrid environments including cloud, infrastructure, applications, and OT systems. You will be responsible for reviewing and advising on security architecture patterns, reviewing and maintaining risk registers, leading assurance assessments, and embedding security controls across infrastructure and platforms. You will also guide teams in applying secure-by-design principles and support both internal audit and external compliance efforts including Gov Assure, CAF, ISO 27001, and Cyber Essentials (CE and CE+) while supporting the secure operation of core services.
Essential:
- Demonstrable experience in designing and implementing secure infrastructure or cloud architectures.
- Proven experience with risk assessment methodologies and maintaining enterprise risk registers.
- Working knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating).
- Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks.
- Experience conducting or supporting security audits and implementing remediation plans.
- Proficiency in assessing and securing platforms such as Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS/PaaS, Windows/Linux/Unix.
- Strong knowledge of security tooling such as SIEM, endpoint detection (EDR/XDR), and vulnerability management platforms.
- Hands-on experience with policy development, access control models (RBAC, ABAC), and logging standards.
- Experience supporting assurance activities or government-mandated reviews (e.g. GovAssure, Secure by Design).
- Knowledge of Incident Management, Vulnerability Assessments, SIEM & SOC Systems.
- Familiarity with ITSM workflows and change control procedures.
- Experience designing or reviewing secure software supply chain and CI/CD security.
- Ability to interpret CVEs, CVSS scores, and threat intelligence feeds.
- Strong stakeholder engagement and communication skills with an ability to produce technical reports and articulate risk to non-specialists.
- Excellent written and verbal communication skills with the ability to present to senior stakeholders.
Desirable:
- Degree in Cybersecurity, Information Technology, or a STEM subject (or equivalent experience).
- Security Assurance certifications such as CCP, SIRA.
- Security certifications such as CISSP, SSCP, CISM, CRISC, CCSP, SABSA, or SANS GIAC (GSEC, GCCC, GCPM).
- Experience working in a regulated or government environment, particularly within research, energy, or national infrastructure.
- Knowledge of OT / ICS/ SCADA security principles and industrial control environments.
An active SC clearance is required for this role. At a minimum, candidates must be eligible and willing to undergo security clearance. Due to the short-term nature of the contract and the urgency of the requirement, the client may prioritise applicants who already hold active SC clearance and meet all essential criteria.
Our Company:
Malikshaw Interim & Executive is a specialist provider of talent management solutions helping our clients transform the delivery of our public services. As an Equal Opportunities Employer, we combine providing the best talent with delivering diverse, inclusive workforces and particularly encourage applications from candidates who are likely to be underrepresented. These include people from Black, Asian and minority ethnic backgrounds, disabled people, LGBTQI+ people, and women.
How to Apply:
Please apply through the link provided to send your application directly to the Recruiter managing this assignment.
If you qualify for any of the above, please notify us on your covering letter and your recruiter will confirm if the client is a member. We will then be in touch to discuss your suitability and arrange your Guaranteed Interview.
Should you require reasonable adjustments at any point during the recruitment process or if there is a more accessible way for us to communicate, please do let me know.
- Demonstrable experience in designing and implementing secure infrastructure or cloud architectures.
