Personnel Security Adviser
Role overview
The role of a Personnel Security Adviser is to provide expert tailored Personnel Security advice to the public and private sectors to mitigate the insider risk.
Role level
Typical role expectations
- Provide expert advice on Personnel Security to the Government Security Profession and wider public and/or private sector
- Conduct risk assessments in the local environment, extracting insights to provide an informed opinion on Personnel Security risks and the adequacy of controls in place
- Align with relevant regulation, policy and standards to provide proportional, practical advice, tailored to the local environment, and advise on any residual risk
- Monitor the efficiency and effectiveness of the Personnel Security processes across the organisation, and make recommendations for continual improvement
- Maintain awareness of current and emerging technologies and their impact on existing security practices
Typical role expectations
- Provide expert advice on Personnel Security to the Government Security Profession and wider public and/or private sector
- Manage and commission risk assessments in the local environment, extracting insights to provide an informed opinion on Personnel Security risks and the adequacy of controls in place
- Create organisational vision for aligning with regulation, policy and standards to provide proportional, practical advice, tailored to the local environment, and advise on any residual risk
- Create and monitor standards regarding efficiency and effectiveness of the Personnel Security processes across the organisation, and make recommendations for continual improvement
- Maintain awareness of current and emerging technologies and their impact on existing security practices
Skills
| Skill | Lead | Principal |
|---|---|---|
| Applied Personnel Security | Practitioner | Expert |
| Risk understanding and mitigation | Practitioner | Expert |
| Protective security | Working | Practitioner |
| Threat understanding | Working | Practitioner |
| Legal and regulatory environment and compliance | Working | Working |
Core learning
Lead
Certified ISO27001 Practitioner
NPSA – Security Culture
QACSRM (Certified Security Risk Manager)
Principal
Certified ISO27001 Practitioner
(ISC)2 Certified Information Systems Security Professional Training (CISSP)
QACSRM (Certified Security Risk Manager)