Job Specifications
Project Assurance Security Specialist - 6 Month Contract (Inside IR35)
Location: Manchester or London (Hybrid)
Day Rate: PS500-PS550 per day
Start Date: ASAP
Contact: finlay.sheard@forsythbarnes.com
We are seeking an experienced Project Assurance Security Specialist for a 6-month contract engagement. This role is pivotal in ensuring that security requirements are effectively embedded across a diverse portfolio of projects, supporting the delivery of secure, compliant, and resilient solutions.
About the Role
You will act as the primary security assurance contact within project teams, working closely with architects, analysts, designers, and business stakeholders. Your responsibility will be to ensure that all project deliverables meet security standards, protect sensitive data, and align with regulatory and organisational requirements. This role requires a blend of technical security expertise, assurance experience, and strong communication skills to translate complex risks into clear, actionable outcomes.
Key Responsibilities
Provide end-to-end security assurance on business change and technology projects.
Review and challenge project documentation including business requirements, solution designs, network and data flow diagrams.
Partner with Security Architects and stakeholders to ensure alignment with enterprise security architecture.
Conduct Information Security Impact Assessments in line with GDPR, DPA, and industry codes of practice.
Scope, support, and follow up on penetration and vulnerability testing.
Ensure that risks are identified, clearly articulated, and managed through to resolution.
Contribute to supplier security assessments, contract reviews, and due diligence activities.
Essential Skills and Experience
Strong background in Information Security Project Assurance within complex environments.
Demonstrable knowledge of risk management, GDPR/DPA, and ISO 27001.
Hands-on understanding of security frameworks, tools, and methodologies, including OWASP.
Broad IT knowledge including networking, cloud, virtualisation, operating systems, and authentication technologies.
Excellent communication and stakeholder management skills, with the ability to influence technical and non-technical audiences.
Desirable Skills and Experience
Security certifications such as CISSP, CISM, CISA, or equivalent.
ISO 27001 Lead Auditor or Lead Implementer qualification.
Familiarity with the NIST Cybersecurity Framework.
Experience in regulated industries such as energy, utilities, or telecoms.
Exposure to smart metering or large-scale national infrastructure programmes.
This is an excellent opportunity to play a key role in delivering secure solutions on nationally significant projects. If you are a proactive and technically strong Security Assurance professional, we encourage you to apply.