Security and Information Risk Adviser

What if you could work with remarkable people on extraordinary things? What if the end result was something a little bit special? What if your role was mission critical?

For nearly 70 years, AWE has been at the forefront of nuclear weapons research and development. We have a critical mission: to provide the warheads for the UK’s ultimate deterrent - Trident. We also use our unique skills to provide wider UK government with counter-terrorism and nuclear threat reduction solutions.

It takes a special sort of person to work at AWE. What if that person was you?

We are looking to recruit a Security & Information Risk Adviser on a 12 month FTC, to provide specialist Information Security advice and guidance to AWE’s projects and functions on all aspects of Information Security.

Location - This is a full-time post working for AWE in the Reading area. We have Smarter Working as a business so there will be some flexibility to work from home.

Salary from £33,950 to £45,000 per annum with the below benefits

As part of our People Promise, AWE (one of the best 25 big companies to work for in the UK) has a range of benefits to suit you. These include:

- Time to recharge your batteries with 270 hours of annual leave (plus every other Friday off work)
- Opportunities for Professional Career Development that include funding for the annual membership of a relevant professional body, access to mentors and training
- Employee Assistance Programme and Occupational Health Services
- A generous defined contribution Group Personal Pension (we will pay between 9% and 13% of your pensionable pay depending on your own contribution)
- Life Assurance
- Discounts - access to savings on a wide range of everyday spending
- Special Leave Policy including paid time off for volunteering, public service (including reserve forces) and caring for your family
- A host of voluntary & core benefits to suit your health and wellbeing - more information available on our careers site

Key Accountabilities:

- Provide a focal point for resolution of security and information risk matters.
- Identify, analyse, and evaluate information risks.
- Explain to risk owners and other stakeholders the causes, likelihood, and potential business impacts of information risks throughout the information system lifecycle.
- Assess compliance with applicable regulations, standards, policies, and guidance on information risk management.
- Present risk management options to the business.
- Support the development of appropriate and proportionate documentation to inform risk management decisions, ensuring these are expressed in terms meaningful to the business.
- Promote security awareness
- All - maintain and promote high personal standards in environment, safety, health, security and quality and be a great team player.

Key Responsibilities:

- Use repeatable and consistent risk assessment techniques to identify emerging information risks throughout the life cycle of assigned information systems, services, or business solutions.
- Co-ordinate the identification of suitable risk treatment options in the context of the business and ensure these are traceable to risks.
- Support the Accreditation process
- Present security briefings to users or local management
- Contribute to security communications.
- Draft requirements for external assurance activities.
- The Company may require you to fulfil any other reasonable duties aligned to your position from time to time in line with business needs.

You Will Have:

- Preparation of risk management documentation /assurance artefacts.
- Good communicator (written and verbal) with sound facilitation, presenting and negotiation skills.
- Ability to operate under pressure and manage priorities.
- Knowledge of MOD/HMG security policies and guidance - Desirable