• Lead Risk Management Framework (RMF) activities for the LIGER deployment at CBP, including system categorization, control selection and tailoring, implementation, assessment, and continuous monitoring • Own and maintain authorization artifacts: System Security Plan (SSP), Security Assessment Plan (SAP), Security Assessment Report (SAR), Plan of Action and Milestones (POA&M), and supporting documentation aligned to CBP and DHS requirements • Coordinate directly with CBP ISSOs, Authorizing Officials, and cyber working groups to advance ATO and continuous authorization activities • Interpret NIST 800-53 controls in the context of the LIGER platform and translate them into actionable engineering requirements • Run and review vulnerability scans across CI/CD pipelines and runtime environments, triage findings, and drive remediation through the engineering team • Validate secure configurations and hardening baselines (e.g., CIS Benchmarks, DISA STIGs) on containers, hosts, and cloud resources • Partner with platform engineers on cloud and container security in AWS GovCloud, including IAM, network controls, secrets management, logging, and runtime protection • Develop and maintain security policies, procedures, and standard operating procedures (SOPs) specific to LIGER on CBP infrastructure • Track audit findings, remediation actions, and POA&M items to closure • Support FedRAMP-aligned control implementation and inheritance where applicable • Advise senior LIGER and CBP leadership on system risk levels, control effectiveness, and emerging compliance considerations for AI/LLM systems in federal environments.

Role Description This Protection Advisor opportunity is ideal for experienced individuals near South Coast seeking a proposition with leads provided. You will be joining a business based along the South Coast, who are producing a high number of leads, which they can share with you. As such, little need for self-generation. This is a home based role with occasional meetings with the Principal to discuss business, cases etc, as such you should be within 1 – 2 hours of the Southampton / Bournemouth area. Qualifications - You should have experience as a Protection Advisor. - Ideally, you should have R05 or equivalent. - You should have a desire to be self-employed. Benefits - Self-employed role with OTE of £50,000 - £85,000+. - Healthy commission splits with tiered rates on self-generation and company leads. - Fully home based role with occasional get-togethers. - Ability to earn additional income through various referral schemes. Company Description

• Actively participate in the information security continuous improvement cycle by identifying gaps and opportunities for improvement, proposing and executing action plans, as well as defining information security policies and security indicators.

• Build & Harden Secure Pipelines • Design, build, and maintain secure CI/CD pipelines with security gates that catch issues before they reach production. • Systematically, consistently and automatically capture the risk exposure of Chainguards products. • Implement and enforce software supply chain security controls: signed artifacts, SBOMs, provenance attestation (SLSA, Sigstore / Cosign). • Proactively identify emerging customer security needs, and build solutions to meet these. • Cloud-Native Product Hardening • Lead security architecture reviews and threat models for Kubernetes-based workloads running on GCP and AWS. • Harden container images, Kubernetes cluster configurations, and cloud IAM postures — minimising attack surface across our product stack. • Define and drive adoption of baseline security standards: pod security standards, network policies, workload identity, secrets management. • Evaluate and operationalise CNAPP / CSPM tooling to maintain continuous visibility into cloud-native risk.