Employer: KBR
Location: Saudi Arabia
The Contract Security Manager (CSM) is a client named key role and provides the security management responsibility across both physical and systems security in delivering the SANGCOM contract. Responsible for maintaining an effective security program, including all of the strategic policies, security programme, initiatives and systems required for the mitigation of security risks whilst maintaining continuity of operations and safeguarding of contract assets including emergency operational procedures and contingency planning as well as alignment and involvement with crisis management and business continuity.
Qualifications, Experience and Skills
Qualifications:
A minimum of 15 years relevant experience in delivering security related services in a major programme, including 5 years as the senior accountable person.
A minimum of 5 years working with the MoD or other government security forces.
Currently hold high level security clearance with the MoD or equivalent.
Experience and Skills:
Essential:
Deep knowledge of the Defence Manual of Security – JSP 440, including its application.
Proven ability in setting security policy and procedures for a complex programme of work, in physically demanding and remote based locations.
Administration of security protocols to direct team and to suppliers.
Management of a security team providing security services across a dispersed physical set of locations.
Understanding of the requirements and application of cyber security.
Understanding of management information systems and how information security checks and access control is managed.
Working knowledge of ISO 27001 or other relevant information security standards.
Proven ability to collaborate with team members in explaining and dissemination guidelines, instructions and procedures.
Proven ability to work in a systematic and organised manner.
Proven and impeccable record in data integrity management.
Desirable:
Experience of working in a SharePoint solution environment.
Knowledge of the Facilities Management industry.
Has an in depth knowledge of Management Information systems including a general knowledge of hardware architecture.
Knowledge of the Facilities Management, IT or Delivery Partner industries.
Experience in running a passes office.
4. Core Responsibilities and Duties
General:
The Contract Security Manager will be responsible for ensuring the project complies with all physical and systems based information security to uphold confidentiality, integrity and data access control.
The role will interface with:
The MOD Security Officer shall be the Principal Security Advisor (PSyA) and the Contractor’s principal point of contact for all security matters.
KBR GS EMEA Security Manager in Leatherhead.
Management representatives in the project as required inc HR and PMO leads.
Technical Manager / security analyst on the implementation of cyber security.
Specific:
Provide the security related aspects of the Service in accordance with rules and regulations mandated by the SANG and relevant applicable sections of the Defence Manual of Security – JSP 440 as far as reasonably practicable for physical security.
Manage the Passes office team to check, register, administer, monitor and control all passes required and issued to the KBR team and to the suppliers.
On behalf of the project team, take responsibility for security at locations and places of work.
Ensure that the project team and suppliers are aware of security restrictions and adhere to travel plans and working practices in the field, including access controls.
Ensure compliance with all relevant UK MoD and SANG Security Policies.
Implement and comply immediately with any new security instructions and policies introduced by the SANG.
Enforce a disciplinary system that is appropriate and consistent across the entire supply chain including the temporary or permanent removal from post where required.
Ensure that work on protectively marked matters and aggregated data is strictly limited to those who are security cleared to the appropriate level and who need such information in order to carry out their work.
Educate and enforce compliance with the Official Secrets Act.
Educate and enforce all policies and procedures to ensure security is maintained.
Educate and apply the data security principles in ISO 27001 around information collection, storage, dissemination and destruction.
Manage the process to obtain Cyber Security accreditation as planned and maintain this accreditation and compliance with its policies and procedures for the duration of the contract.
Provide and deliver information security methodologies and working practices within the MIS.
Notify the PSyA of any security threats, breaches or issues that may compromise security.
5. Competencies
Key competencies for this role, demonstrated to a proficient level:
Building Relationships – Be able to engage with and maintain productive relationships with a diverse team.
Communication skills - Be articulate and engaging. Demonstrate ability across different styles for example, passionate, empathetic, assertive, reflective etc.
Accountability - Take responsibility for actions and provide support as needed.
Influencing – establishes communication channels, actively listens, clarifies, gives/seeks feedback, clear and concise, persuasive/negotiates with others.
Interpersonal skills – builds positive relationships, demonstrates emotionally stability, confident in own ability, approachable to all staff, shows respect and tolerance.
Problem solving – identify and own problems. Be able to investigate and assess options and determine most suitable course of action.
Diligence – attention for detail and accuracy. Recognise when and how to check, test and review information and provide confidence in the correctness of a deliverable.
Systematic – Able to set up workflow and protocols. Able to develop guidelines and control measures to ensure compliance and repeat-ability of tasks.
APPLY
Location: Saudi Arabia
The Contract Security Manager (CSM) is a client named key role and provides the security management responsibility across both physical and systems security in delivering the SANGCOM contract. Responsible for maintaining an effective security program, including all of the strategic policies, security programme, initiatives and systems required for the mitigation of security risks whilst maintaining continuity of operations and safeguarding of contract assets including emergency operational procedures and contingency planning as well as alignment and involvement with crisis management and business continuity.
Qualifications, Experience and Skills
Qualifications:
A minimum of 15 years relevant experience in delivering security related services in a major programme, including 5 years as the senior accountable person.
A minimum of 5 years working with the MoD or other government security forces.
Currently hold high level security clearance with the MoD or equivalent.
Experience and Skills:
Essential:
Deep knowledge of the Defence Manual of Security – JSP 440, including its application.
Proven ability in setting security policy and procedures for a complex programme of work, in physically demanding and remote based locations.
Administration of security protocols to direct team and to suppliers.
Management of a security team providing security services across a dispersed physical set of locations.
Understanding of the requirements and application of cyber security.
Understanding of management information systems and how information security checks and access control is managed.
Working knowledge of ISO 27001 or other relevant information security standards.
Proven ability to collaborate with team members in explaining and dissemination guidelines, instructions and procedures.
Proven ability to work in a systematic and organised manner.
Proven and impeccable record in data integrity management.
Desirable:
Experience of working in a SharePoint solution environment.
Knowledge of the Facilities Management industry.
Has an in depth knowledge of Management Information systems including a general knowledge of hardware architecture.
Knowledge of the Facilities Management, IT or Delivery Partner industries.
Experience in running a passes office.
4. Core Responsibilities and Duties
General:
The Contract Security Manager will be responsible for ensuring the project complies with all physical and systems based information security to uphold confidentiality, integrity and data access control.
The role will interface with:
The MOD Security Officer shall be the Principal Security Advisor (PSyA) and the Contractor’s principal point of contact for all security matters.
KBR GS EMEA Security Manager in Leatherhead.
Management representatives in the project as required inc HR and PMO leads.
Technical Manager / security analyst on the implementation of cyber security.
Specific:
Provide the security related aspects of the Service in accordance with rules and regulations mandated by the SANG and relevant applicable sections of the Defence Manual of Security – JSP 440 as far as reasonably practicable for physical security.
Manage the Passes office team to check, register, administer, monitor and control all passes required and issued to the KBR team and to the suppliers.
On behalf of the project team, take responsibility for security at locations and places of work.
Ensure that the project team and suppliers are aware of security restrictions and adhere to travel plans and working practices in the field, including access controls.
Ensure compliance with all relevant UK MoD and SANG Security Policies.
Implement and comply immediately with any new security instructions and policies introduced by the SANG.
Enforce a disciplinary system that is appropriate and consistent across the entire supply chain including the temporary or permanent removal from post where required.
Ensure that work on protectively marked matters and aggregated data is strictly limited to those who are security cleared to the appropriate level and who need such information in order to carry out their work.
Educate and enforce compliance with the Official Secrets Act.
Educate and enforce all policies and procedures to ensure security is maintained.
Educate and apply the data security principles in ISO 27001 around information collection, storage, dissemination and destruction.
Manage the process to obtain Cyber Security accreditation as planned and maintain this accreditation and compliance with its policies and procedures for the duration of the contract.
Provide and deliver information security methodologies and working practices within the MIS.
Notify the PSyA of any security threats, breaches or issues that may compromise security.
5. Competencies
Key competencies for this role, demonstrated to a proficient level:
Building Relationships – Be able to engage with and maintain productive relationships with a diverse team.
Communication skills - Be articulate and engaging. Demonstrate ability across different styles for example, passionate, empathetic, assertive, reflective etc.
Accountability - Take responsibility for actions and provide support as needed.
Influencing – establishes communication channels, actively listens, clarifies, gives/seeks feedback, clear and concise, persuasive/negotiates with others.
Interpersonal skills – builds positive relationships, demonstrates emotionally stability, confident in own ability, approachable to all staff, shows respect and tolerance.
Problem solving – identify and own problems. Be able to investigate and assess options and determine most suitable course of action.
Diligence – attention for detail and accuracy. Recognise when and how to check, test and review information and provide confidence in the correctness of a deliverable.
Systematic – Able to set up workflow and protocols. Able to develop guidelines and control measures to ensure compliance and repeat-ability of tasks.
APPLY