Cyber Security Assessor

Cyber Security Assessor

Team: Audit and Certification

Reports to: CEO

Location: Remote and or hybrid

Hours: 32 hours (no salary sacrifice)

Salary: Open to a conversation - we’re all about our people!

Who we are and what is important to us:

Secure Schools is an innovative ed-tech start-up on a mission to lead the education industry in adapting and overcoming threats to computer systems and networks. We achieve this by providing schools and multi-academy trusts with a first-of-its-kind, one-stop-shop cyber security management app (pretty cool, right?).

Uniquely positioned as highly specialist in both cyber security and education - our laser-focus and deep understanding of schools enables us to offer exceptional products and services to an industry with contextual challenges.

Our relationship with leadership teams, IT departments, and service providers allows us to be ruthlessly independent, providing impartial intelligence that schools can trust.

Job snapshot:

As our Cyber Security Assessor, you will own and drive critical cyber security auditing processes that will help build the future of Secure Schools. You’ll be part of meaningful and impactful work that supports an industry faced with an ever-increasing challenge.

You’ll be leading our audit and certification team, so you’ll be given the autonomy and freedom to set the agenda and will truly shape the way we work.

You’ll enjoy finding new and different ways to review both our own security and those of our customers, and you’ll work closely with the leadership team to help establish the right processes and tools that support a security-first environment.

What you’ll be doing:

• Partnering with Schools and Multi-academy Trusts, offering solutions that meet their needs and result in their success with Secure Schools
• Conducting information security audits by using the technologies we use and holding interview-style conversations with technical and leadership staff
• Writing and delivering quality reports on completed audits
• Providing Cyber Essentials and Cyber Essentials Plus support
• Conducting Cyber Essentials assessments
• Conducting research on education-specific environments and technologies
• Writing and delivering quality reports on completed research
• Contributing to the fortnightly Secure Schools Threat Briefing
• Working closely with the Customer Relationship Manager to ensure the successful introduction, scoping and delivery of customer audit and scrutineering projects.
• Working closely with the Offensive Security team to ensure the smooth transition between audit, scrutineering and offensive security testing
• Contributing to the design and implementation of new and existing software products and infrastructure to ensure security is at the forefront of our thinking
• Identifying new ways of working, technology and processes to improve security

Technologies we use:

• NMAP
• Kali Linux (Wireless network auditing tools only)
• Tenable Nessus Vulnerability Assessment Tools
• Greenbone Vulnerability Assessment Tools

Requirements

What we're hoping you'll bring:

• Qualified or committed to gaining CISSP or CISM certification as required for Cyber Essentials and Cyber Essentials Plus assessors
• Experience in conducting IT security audits
• Experience working with IT in the education sector (a nice to have)
• The ability to communicate effectively to technical and non-technical audiences
• Ability and passion to champion a security-first culture
• Experience with information security certification schemes such as Cyber Essentials (Plus) and ISO27001
• Ability to influence and adapt in an ever-changing environment

Benefits

What you’ll get:

The Secure Schools team are driven, ambitious and creative. Together we problem solve, disrupt and innovate – all in just 32 hours a week.

We firmly believe that success comes from a positive and supportive working environment, where individuals are encouraged to bring new ideas to the table and continually develop and expand their own skills.

Our aim is to elevate each team member through a number of initiatives, allowing everyone to do their best work no matter their background or circumstances. With this we’ve worked hard to create comprehensive and adaptable benefit packages, although you can expect the below as standard:

• Flexible working schedule/work from home opportunities
• Onsite gym and well-being (quiet room) facilities
• Buying and selling holiday scheme (unlimited)
• Additional holiday for length of service
• Your birthday as an extra holiday day, on us!
• Annual allowance for volunteering days
• Monthly and fully-funded lunch club, for everyone!
• Comprehensive wellness programmes (think meditation retreats and continuous access to wellbeing apps/initiatives)
• Enhanced maternity, paternity and adoption benefits
• Electric Car Scheme
• Cycle to Work Scheme
• Eye examination scheme
• Financial contribution to the set up of work from home environments
• Use of new and leading technology in the form of apple and microsoft products
• Frequent company funded social events
• Office closure between Christmas & New Year
• Access to continuous learning and development opportunities
• Comprehensive employee referral scheme
• Casual Dress Code

In addition to the above, you’ll have access to our ‘take your pick’ benefits scheme which is tailored specifically to you!