Job Description
Security Information Assurance Consultant
5 Days Onsite Central London
Due to security clearance requirements, candidates must be eligible for or currently hold SC or DV. Candidates must be sole UK national/British citizen and have resided in the UK for 10 years or more.
DXC Technology is committed to building diverse, inclusive teams. We welcome applications from all backgrounds and particularly encourage interest from women, underrepresented groups, and neurodivergent candidates. We offer reasonable adjustments throughout the hiring process and are dedicated to creating a supportive, accessible environment for everyone.
Role responsibilities
- Work closely with Security Architects and design teams to provide a bridge between technical teams and business risk owners, translating technical security risks into a form understandable to non‑technical business people.
- Advise risk owners on the severity of risks and potential mitigation strategies (and their impacts) to enable informed decision‑making.
- Monitor implementation and ongoing maintenance of agreed risk‑management actions.
- Create, maintain, and utilise risk assessments and related artefacts such as the risk register and security‑specific documentation such as Security Operating Procedures.
- Assist the Account Security Lead with creating and maintaining security‑related processes, policies, and guidance.
- Proactively identify areas for improvement in security across the account, both to improve security and to make good security easier.
What you will bring to the team
- Experience in a similar or related role with desirable additional qualifications such as CISM or CISSP / IISP or other professional body membership.
- Experience applying HMG best practices (e.g., NCSC guidance, DSIT Secure by Design, GovS 007).
- Desire to improve processes and to seek the root cause of problems.
- Willingness to share knowledge and learn from others.
- A proactive approach to identifying risks and problems.
- A strong team‑working ethic, with a “customer first” focus and a thirst for knowledge.
Desirable Skills and Technologies
- Deep knowledge of information and cyber security risk management.
- Experience in threat modelling using STRIDE or Attack Trees, NIST Cyber Security Framework.
- Experience or knowledge of technology stacks such as Cloud (AWS, MS Azure), M365, VMWare, Redhat Openshift or other container orchestration platforms, Windows and Linux operating systems.
- Knowledge of industry security guidance from OWASP and CIS.
- Awareness of security champions programmes.
What we will do for you
- Competitive compensation.
- Pension scheme.
- DXC Select – Comprehensive benefits package including private health/medical insurance, childcare vouchers, gym membership and more.
- Perks at Work (discounts on technology, groceries, travel and more).
- DXC incentives (recognition tools, employee lunches, regular social events, etc.).
At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritises in‑person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.
#J-18808-Ljbffr…