UK accelerates autonomous cyber security plan with publication of new report.
The UK government has formed an alliance with a security specialist and some of the most well-known car manufacturers to formulate a cybersecurity plan for the next-generation of autonomous vehicles. The Department for Transport (DfT) and the British Standards Institute (BSi) have enlisted the expertise of Jaguar Land Rover (JLR), Ford and Bentley, to help make the UK a leading light in the development of safe self-driving vehicles, the use of which is predicted by many to be the next major development in the automotive industry.
According to the DfT, the automated vehicle market is forecast to be worth up to £52 billion by 2035, a value that would no doubt be disrupted should manufacturers not devise an effective strategy against the attacks that continue to be one of the main threats facing autonomous technology.
The 47-page BSI document created to improve the UK’s fortunes in that area looks at what it calls the “constantly evolving nature of the threat environment” and has focused on key areas to mitigate them, including Security Governance, Assessing and Managing Security Risks and Software Tustworthiness.
Speaking on the work, the UK minister for the Future of Mobility, Jesse Norman, said that the growing sophistication of vehicles brought with them major opportunities. “This cyber security standard should help to improve the resilience and readiness of the industry, and help keep the UK at the forefront of advancing transport technology.”
The latest work is created in conjunction with the DfT’s key principles of vehicle cyber security for connected and automated vehicles, published in August 2017 – a strategy that focuses on eight key strategies:
- organisational security is owned, governed and promoted at board level
- security risks are assessed and managed appropriately and proportionately, including those specific to the supply chain
- organisations need product aftercare and incident response to ensure systems are secure over their lifetime
- all organisations, including sub-contractors, suppliers and potential 3rd parties, work together to enhance the security of the system
- systems are designed using a defence-in-depth approach
- the security of all software is managed throughout its lifetime
- the storage and transmission of data is secure and can be controlled
- the system is designed to be resilient to attacks and respond appropriately when its defences or sensors fail
- IAM Consultant- One Identity Manager- UK Wide
- Upto £75,000 plus excellent benefits
One Identity IAM consultant is needed for this expanding UK based business, you will be responsible for: Developing and Supporting the Identity and Access management system based-on One Identity products Active Roles Server and Identity Manager. Further develop One Identity Manager’s integration with Service Now to provide automated JML processes and application access requests and fulfilment. Work across the business ensuring that the IAM solutions integrates into both the technology and business systems and processes, ideally automating as mush as possible. Work with the Governance Risk & Compliance (GRC) team to provide application access attestations and toxic combination alerting and reporting. Work on a mixture of IAM related projects to help to integrate new ideas and technology into the business to ensure the business stays fully compliant Assist in ensuring that all IAM capabilities are mapped to internal processes, policies, and standards. Develop metrics to measure and improve and also compile reports around the solution If you are interested in this opportunity we are looking for someone who is skilled within Identity Acess management, you will need to have worked with the One Identity product, ideally both Active Roles Server and Identity Manager Experience in managing and integrating with Microsoft systems (on-premise and cloud), such as Active Directory, Exchange, Office, SharePoint, etc.
- SailPoint Integration Consultant
- Upto £75000 plus benefits
SailPoint Integration Consultant. SailPoint Integration Consultant is needed for this expanding service business to help them with complex deployment with their FTSE focused customer base. They are looking for experienced SailPoint Integration Consultants who have: • Strong solution designing experience with in depth understanding of IAM concepts and thorough understanding of Sailpoint domain. • Thorough understanding of Identity and Access Governance concepts • Leading and creating Identity & Access Management (IAM) technical architecture • Secure by Design principles in Identify Access management, Privilege Access management • Familiar with cloud architectures, data management and source control from a security perspective. This is a great opportunity to join a business that is growing and looking for individuals who want to grow and develop and work on some of the most complex Sailpoint deployments.
- CyberArk Integration Consultant
- Greater London
- upto 75,000 plus benefits
CyberArk Integration Consultant. CyberArk Integration Consultant is needed for this expanding service business to help them with complex deployment with their FTSE focused customer base. They are looking for experienced CyberArk Integration Consultants who have: • Strong solution designing experience with in depth understanding of IAM concepts and thorough understanding of CyberArk domain. • Thorough understanding of Identity and Access Governance concepts • Leading and creating Identity & Access Management (IAM) technical architecture • Secure by Design principles in Identify Access management, Privilege Access management • Familiar with cloud architectures, data management and source control from a security perspective. This is a great opportunity to join a business that is growing and looking for individuals who want to grow and develop and work on some of the most complex CyberArk deployments.
- Penetration Tester, UK based. Ability to achieve SC clearance
- United Kingdom
Experienced Penetration tester- UK based with the ability to achieve SC clearance. On-going training and development and paid certifications / renewals. Interested to hear from all areas of penetration testing, web app, infrastructure, mobile, etc. MUST have current hands on experience delivering penetration testing. Ideally from a consultancy background with experience working with multiple clients. OSCP / CREST / CHECK / Tigerscheme penetration testing experience / certifications desirable. Apply today for more details. All information kept in the strictest of confidence.