Lead Consultant for SecOps Modules (Vulnerability Response and Integration with SN)

Description

Summary of the work Lead Delivery and Integration Lead ServiceNow for Vulnerability Response and GRC IRM. Working within a focussed internal, blended team, lead the end-to-end discovery, delivery and implementation of ServiceNow Vulnerability Response to mature out our MVP Sec Ops platform (GRC IRM and SIRT). Specialist role Technical Architect Expected Contract Length 6 Months Latest start date Wednesday 14 December 2022 Maximum Day Rate £2000 per day Who Speclialist Work With The specialist will join an existing DWP team and will lead the end-to-end discovery, delivery and implementation of ServiceNow Vulnerability Response to mature our Sec Ops platform. The specialist will be working with: • Digital Security Secure Place Team • Digital Security Vulnerability Management & Mitigation Team • Digital Security Risk Management Team • Security & Data Protection CRC, TVAT, TIG Teams • Hybrid Cloud Services Delivery Teams • DWP Tooling Teams (ServiceNow and Enterprise Tooling Teams) • Digital Security Deputy Director What Specialists Work On Required for experienced ServiceNow Security Operations (SecOps) Subject Matter Expert with a background of leading IT projects and successfully delivering Vulnerability Response on an immature SecOps ServiceNow platform. We have previously gone to market for a senior consultant, this requirement is for a lead architect to support this individual and internal team members. • Investigation to establish which integrations to other Security modules and tooling will support increased and matured Digital Security capability. • Consult on the build and implementation of GRC IRM Control Indicators to demonstrate the CISv8 Control Compliance position, where scripting or complexity is required. Skills & Experience • Be affiliated with a recognised ServiceNow partner. • Evidence of successful high quality ServiceNow Vulnerability Response, Enterprise Level Licence, design and implementation. • Evidence of successful high quality ServiceNow Vulnerability Response, Enterprise Level Licence, design and implementation. • Evidence of successful high quantity ServiceNow GRC IRM Control Indicator configuration and deployment across ServiceNow platform. • Strong understanding and experience of NIST including CISv8 Controls. • Evidence enhanced customer experience and added value derived from your ServiceNow Sec Ops design and implementation in a large-scale organisation and/or Public Sector organisation. • Experience of working as a part of a team and leading where necessary. • Evidence successful deployment where Threat Intelligence was delivered in an integrated, automated way consuming ServiceNow CMDB and/or CSDM modules in a large-scale hybrid IT Estate. • Evidence successful deployment of orchestrated patch management in a large-scale hybrid IT Estate. Nice to Haves • 5+ years relationship affiliated with a ServiceNow Elite partner. • Have ServiceNow Certified Master Architect (CMA) status. • Have Certified Implementation Specialist – Risk and Compliance. • Have Certified Implementation Specialist – Vulnerability Response. Work Location Primary locations: • Peel Park, Brunel Way, Blackpool FY4 5ES • 2 St. Peter’s Square, Manchester M2 3AA Secondary location: Work from home Working Arrangments Flexible working arrangements will be offered however it is likely that 60% will be office based and 40% will be home based working on DWP laptop. Security Clearance BPSS Required SC optional but preferred No. of Specialists to Evaluate 3 Cultural Fit Criteria • Inform DWP how you ensure that clients get the highest level of value out of their ServiceNow. • Advise how you ensure you are able to translate a client's compliance and risk requirements into technology deliverables using the power of the ServiceNow platform. • Demonstrate how you have discharged your duty of care to ensure that your ServiceNow Sec Ops platform clients derive added value in the implementations. • Demonstrate how you have discharged your duty of care to ensure that your ServiceNow Sec Ops platform clients derive added value in the implementations. • Work as a team with our organisation and other third party suppliers. • Be transparent and collaborative when making decisions. • Have a no-blame culture and encourage people to learn from their mistakes. • Take responsibility for their work. • Share knowledge and experience with other team members. • Challenge the status quo. Evaluation Weighting Technical competence 70% Cultural fit 10% Price 20% Questions from Suppliers 1. Is there an incumbent for this role? There is no incumbent for this role. We recently published a similar requirement for a Senior Consultant for SecOps Modules, this has now closed, and this requirement is for a distinct role.