Latest News & Events

Share Price 8/9/2010
8:52am434.00p6.00+1.40%

Sign up to our email alerts


Risk Threat & Compliance Manager (NGS)

£70K + Benefits
Based at our Sutton office

Primary job purpose

To help develop existing and new service offerings in:

Security Testing and Assessment
  • Security Architecture
  • Threat Modelling
  • Risk Assessment
  • Standards Compliance – PCI-DSS, SOX, ISO, Legal & Regulatory

Training

  • Threat Modelling
  • Risk Assessment
  • Standards Compliance

Research and Development

  • Threat and Risk Modelling

Responsibilities

The candidate will be expected to:

  • Help expand existing service offerings or create new ones where appropriate
  • Create internal methodologies for use by the testing teams which cover new or extant service offerings
  • Perform billable work for Threat modelling, compliance, and Risk Assessment engagements
  • Create and where appropriate give training courses to clients
  • Promote NGS and NCC groups at various conferences through papers and presentations.

Essential skills

In order to fulfil this role the candidate must:

  • Have in depth knowledge of application security particularly as it relates to Web or other network based applications
  • Have a detailed knowledge of Microsoft’s  SDL processes with particular emphasis on Threat Modelling
  • Have a good understanding and working knowledge of the appropriate ISO standards and other regulatory standards as they pertain to compliance
  • Be an internationally recognised security expert to help promote NGS and NCC Group’s presence and reputation within the security industry

Type of experience:

  • Have at least 10 years security experience
  • Have experience in Microsoft SDL Processes with a view to creating service offerings for public consumption as well as internal methodologies.
  • Have experience of creating and giving training courses on security related topics

Personal qualities:

  • Good communication skills
  • Enthusiasm
  • Flexibility
  • Co-operative

Your Details

Contacting You

Message

CV

 
Page Tools

Services

Escrow & Software Verification

We are the world's largest provider of Escrow

Mitigate the risk of depending on third parties to supply your business critical software. More

Website Monitoring

The UK's leading web performance testing company

We help to ensure your online presence is consistently available and providing a quality service to your customers. More

Advisory

Protecting Clients Worldwide

Acting as trusted advisors, our Consultants advise on all aspects of IT, business processes and information security. More

Software Testing

Protecting Clients Worldwide

Our bespoke testing solutions make sure your time, cost and quality targets are met, wherever you are in a development lifecycle. More

Security Training

Courses designed to suit your requirements

Each organisation has it's own set of security concerns. Our training will help protect you from even the most sophisticated attacks. More

Penetration & Security Testing

We have the largest team of testers in the UK

Our testing of networks, applications and databases provides reassurance that your systems are secure from attack. More

Forensic Investigation

One of the UK's strongest team of forensic consultants

Our consultants have Government security clearance and advise on technical aspects of evidence management. More

Security Software Development

We're a globally respected IT security research company

Our expert security software is designed to aid your organisations in the ongoing battle with information security breaches. More

Audit & Compliance Services

The only company conducting both Visa & Mastercard audits

Payment card certification audits, PCI DSS compliance and strategic advisory services for card manufacturing, data preparation and personalisation vendors. More

365 Assured

It's one thing to be secure; it's another thing to prove it

We have combined our expertise to create a unique, market-leading Certification Programme. More