Security Risk Lead - SC cleared
CBSbutler Ltd.Security Risk Lead
+6 months +
+SC cleared
+Remote working - occasional travel to Corsham
+Inside IR35
+£550 - £590 a day
Skills:
- Proven demonstrable experience operating in a security risk role
- MOD experience
- SC clearance
We are seeking an experienced Security Risk Lead to lead cyber risk management and assurance across a high-profile Defence programme. Reporting to the Programme CISO, you will embed Secure by Design principles across the full system lifecycle, ensuring compliance with JSP 440 (Leaflet 5C), JSP 453 and alignment to National Institute of Standards and Technology (NIST) RMF and CSF frameworks.
Key Responsibilities- Lead continuous risk management within agreed risk appetite.
- Develop and maintain security artefacts (SMP, SAL, Risk Assessments, IR & Vulnerability Plans).
- Oversee governance, architectural security approvals and compliance with MOD policy.
- Manage CHECK Health Checks, Secure by Design assurance, and audit remediation.
- Engage senior stakeholders and translate cyber risk into business impact.
- Proven cyber security risk or governance background.
- Strong knowledge of NIST RMF/CSF and MOD policy (JSP 440 & 453).
- Experience delivering risk assessments, health checks and remediation.
- Stakeholder management within MOD or Government environments.
- CISSP, CISM, CRISC, CGRC or Chartered status.
Deliverables are managed on a Sprint basis, with full ownership of security documentation, assurance activity and continuous monitoring across the programme lifecycle.
If you'd like to discuss this Project Security Lead role in more detail, please send your updated CV to and I will get in touch.