Skills

Security Testing Architecture

Job Specifications

A global law firm is seeking an Information Security Assurance Specialist to support and enhance the firm’s security and risk assurance capabilities.

£80,000 per annum

3 days onsite per week in central London.

Working closely with the Information Security Manager, this role will focus on assessing the effectiveness of security controls across systems, projects, and operational processes. You will determine when assurance testing is required, engage specialist third-party providers to deliver testing, and oversee findings through to remediation or risk acceptance. The role also plays a key part in supporting technology change by reviewing solution designs, identifying security requirements, and advising on risk associated with system changes.

Key Responsibilities

Define and coordinate security assurance activity across the technology estate, including:
Security testing of new and changing systems prior to production release
Regular testing of core platforms and infrastructure
Non-technical assurance exercises such as physical security assessments and social engineering scenarios
Review and assess testing outcomes alongside technical specialists, rank issues based on business risk, and track remediation to completion
Partner with IT architecture and delivery teams to review technical designs and ensure security controls are incorporated early in the solution lifecycle
Evaluate security implications of technical changes and represent information security at governance forums, including change advisory boards
Contribute to the ongoing development and standardisation of assurance practices by defining testing expectations and reusable security requirements
Support the maintenance and evolution of the firm’s ISMS, including documentation, reporting, and compliance support activities

About You

Proven background in information security, regulated or ISO-aligned organisation
Practical understanding of ISO 27001 and Cyber Essentials Plus
Proactive, accountable, and comfortable taking ownership of security outcomes
Strong organisational skills with the ability to manage multiple priorities
Curious by nature, with an interest in improving controls, processes, and approaches
Confident engaging with technical specialists, suppliers, and senior business stakeholders

Please apply if you're keen!

About the Company

DVF Recruitment - The Formula For Successful Change We provide world-class business transformation and technology talent to international cross-industry clients, from FTSE 100 to boutique organisations. With over 20 years of combined expertise, we have a deep understanding of the challenges and opportunities associated with delivering complex change. D x V x F > R = Successful Change - You may recognise this as the Beckhard-Harris model for delivering successful change into businesses. D = Dissatisfaction with how things ... Know more