£500/day to £575/day
Bristol, England
Contract, Variable

NIST Project Manager - Cyber Security Assessments and Audits

Posted by Matchtech .

Project Manager - Cyber Security Assessments and Audits

Overview of Role A NIST Project Manager - Cyber Security Assessments and Audits is required to support the CRP on the Security Compliance Assessments project, contributing to a reduction in MOD's cyber risk exposure by undertaking NIST compliance assessments across the MOD TLBs, identifying and driving improvement actions at both TLB and cross-Defence levels. Audit of TLBs making use of the NIST framework to identify compliance maturity. Audits of suppliers and MOD making use of DEFCON658 and DEFSTAN 05-13.

  • Project reporting on Audit Progress
  • Audit Planning
  • MOD and External Supplier Engagement for Audit arrangements
  • Resource planning and allocation for Audits
  • Assessing Audits and identifying trend analysis

Essential Skills: Previous experience of MOD/CRP

  • Any existing knowledge or experience of the Cyber Resilience Programme and MOD (including DD
  • Takes full responsibility for the definition management and satisfactory completion of medium complexity projects across Defence
  • Provides clear direction and leadership to the project team
  • Creates and manages relevant project artefacts
  • Can identify and manage complex stakeholder environments throughout project delivery
  • Monitors costs, times, quality and resources used and takes action where required

Options Analysis

  • Collaborates with stakeholders and specialists to get the information required for feasibility assessment
  • Prepares commitment cases, including cost/benefit, impact and risk analysis for each option

Advice

  • A willingness to push the boundaries of the organisation and find new innovative applications and solutions. An ability to communicate this within the client and demonstrate the value proposition and lead them in doing it
  • Collaborates with clients to understand client requirements by collecting data and delivering analysis
  • Works collaboratively to develop and implement solutions
  • Ensures that proposed solutions are properly understood and appropriately communicated

Supplier Management

  • Monitors progress against business objectives specified in the business case. Proactively manages risks in the contract
  • Identifies and reports under-performance and develops opportunities for improvement
  • Identifies where change is required and plans for variations. Ensures, in consultation with stakeholders, that change management is implemented appropriately
  • Acts as the routine contact point between the organisation and suppliers
  • Supports resolution of supplier-related incidents, problems, or unsatisfactory performance

Stakeholder Management

  • Identifies and analyses stakeholders across the project
  • Facilitates open communication and discussion between stakeholders
  • Acts as a single point of contact by developing, maintaining and working to stakeholder engagement strategies and plans

Requirements Elicitation and Management

  • Provides constructive challenge to stakeholders as required
  • Prioritises requirements and documents traceability to source
  • Provides input to the requirements baseline

Programme Management Office

  • Management of all programme, theme and project level reporting requirements

  • Reporting drumbeat

  • Information to support relevant project/ theme & programme boards/ forums

  • Resources to support PMs and team in producing quality reports

  • Management of change control process

  • Change control log

  • Collation and suitable storage of documentation and evidence to support individual change requests

  • Communication and promotion of process amongst all Stakeholders

  • Supporting documentation and guidance on process

  • Management of Learning for Experience process

  • LfE log collating lessons applicable at a Programme level

  • Documents and sessions to support communication and promotion of process amongst all Stakeholders

  • Regular feedback sessions with Programme team

  • Management of onboarding/ offboarding process

  • Onboarding/ offboarding tracker

  • Actively managed resource list

Desirable Skills:

  • Cyber security experience

  • Particularly with red teams, Penetration testing or ethical hacking

  • Existing MOD credentials (s-Level) / IT access

  • Existing PUID, S-Level account, MOD Laptop

  • Horizon scanning

  • Supports monitoring of the external environment and assessment of emerging technologies

  • Solution Architecture

  • Contributes to the development of solution architectures in specific business, infrastructure or functional areas

  • PMO Support

  • Assists with the compilation of portfolio, programme and project management reports to support the overall CRP reporting

  • Maintains programme and project files from supplied actual and forecast data

  • Business Analysis

  • Plans, manages and investigates business analysis where there is significant ambiguity and complexity.

  • Engages and collaborates with a wide range of stakeholders, including those at the management level. Gains agreement from stakeholders to conclusions and recommendations

Related

We use cookies to measure usage and analytics according to our privacy policy.