Personnel Security Adviser
Role summary
The role of a Personnel Security Adviser is to provide expert tailored Personnel Security advice to the public and private sectors to mitigate the insider risk.
Entry route
Internal
Suitable for an individual from the Government Security Profession or other relevant profession. For example, HR, behavioural sciences or research and development.
External
Suitable for an individual who has worked as a Personnel Security consultant in industry.
Role level
Typical role expectations
- Provide expert advice on Personnel Security to the Government Security Profession and wider public and/or private sector
- Conduct risk assessments in the local environment, extracting insights to provide an informed opinion on Personnel Security risks and the adequacy of controls in place
- Align with relevant regulation, policy and standards to provide proportional, practical advice, tailored to the local environment, and advise on any residual risk
- Monitor the efficiency and effectiveness of the Personnel Security processes across the organisation, and make recommendations for continual improvement
- Maintain awareness of current and emerging technologies and their impact on existing security practices
Typical role expectations
- Provide expert advice on Personnel Security to the Government Security Profession and wider public and/or private sector
- Manage and commission risk assessments in the local environment, extracting insights to provide an informed opinion on Personnel Security risks and the adequacy of controls in place
- Create organisational vision for aligning with regulation, policy and standards to provide proportional, practical advice, tailored to the local environment, and advise on any residual risk
- Create and monitor standards regarding efficiency and effectiveness of the Personnel Security processes across the organisation, and make recommendations for continual improvement
- Maintain awareness of current and emerging technologies and their impact on existing security practices
Skills
| Skill | Lead | Principal |
|---|---|---|
| Applied Personnel Security | Practitioner | Expert |
| Risk understanding and mitigation | Practitioner | Expert |
| Protective security | Working | Practitioner |
| Threat understanding | Working | Practitioner |
| Legal and regulatory environment and compliance | Working | Working |
Core learning
Lead
Certified ISO27001 Practitioner
NPSA – Security Culture and Behaviour Change
QACSRM (Certified Security Risk Manager)
Principal
Certified ISO27001 Practitioner
Risk in the Boardroom
(ISC)2 Certified Information Systems Security Professional Training (CISSP)