Personnel Security Investigator
Role overview
The role of Personnel Security Investigator is to investigate and analyse Personnel Security incidents, provide tailored recommendations of actions to resolve issues, feed back lessons learned to the appropriate risk groups, and ensure new mitigations can be instigated to reduce the likelihood of a repeat incident.
Role level
Typical role expectations
- Design impact assessment documents prior to initiating investigations to assess whether an investigation is necessary
- Conduct investigations into Personnel Security incidents in line with relevant organisational HR and security policies
- Produce comprehensive reports on the outcome of investigations and recommend disciplinary action where necessary
- Contribute to the creation and maintenance of policies and procedures
Typical role expectations
- Review impact assessment documents before initiating investigations to assess whether an investigation is necessary
- Manage investigations into Personnel Security incidents in line with relevant organisational HR and security policies
- Lead on the delivery of comprehensive reports on the outcome of investigations
- Lead on the creation and maintenance of policies and procedures associated with the investigation process
Typical role expectations
- Review non-standard impact assessment documents prior to initiating investigations to assess whether an investigation is necessary
- Provide leadership and oversight to Personnel Security incidents and mandate compliance to relevant organisational HR and security policies
- Lead on the review of comprehensive reports on the outcome of investigations
- Provide leadership for and ensure substantial reviews are held on policies and procedures associated with the investigation process
Skills
| Skill | Associate | Lead | Principal |
|---|---|---|---|
| Investigative interviewing | Practitioner | Practitioner | Expert |
| Applied Personnel Security | Practitioner | Practitioner | Practitioner |
| Risk understanding and mitigation | Working | Practitioner | Practitioner |
| Legal and regulatory environment and compliance | Working | Working | Practitioner |
| Threat understanding | Awareness | Working | Working |
| Protective security | Awareness | Working | Practitioner |
Core learning
Associate
Conducting Investigations
Certified Security Risk Manager
SEC566: Implementing and Auditing the Critical Security Controls – In-Depth
Lead
NPSA – Security Culture
Conducting Investigations
(ISC)2 Certified Information Systems Security Professional Training (CISSP)
Principal
Conducting Investigations
Certified ISO 27001 Practitioner
Certified Information Security Management Principles