Up to £60.87 per hour
4 months ago
Purpose of role: This role will include, liaising with stakeholders, influencing engineering design, producing documentation in support of accreditation, providing advice and guidance to shape technical solutions and supporting embedding our security culture across the business. Outputs/Deliverables: Producing documentation such as architecture and RMADS for support of accreditation. Collecting evidence for the security case. Inputting security sections of bid proposal documents and producing estimates, and security principle frameworks. Contribution to the wider product security function; delivering training, presenting at Special Interest groups, improving processes etc
Role Spec emphasis: Focus on documentation and accreditation (RMADS, SyOPs, system design) Focus on security documentation, the accreditation process and vulnerability assessments and management
Industry Knowledge: Experience of or working in product security (particularly if working with UK/NATO/International standards) would be an advantage. Experience of working within a large engineering programme would be an advantage.
Qualifications: CCP qualifications or experience of competencies of practitioner level in Security & Information Risk Advisor and/or Senior IA Architect role would be an advantage. Crest, CISSP or CHECK would be an advantage Tasks and Activities: 1. Design and shape the technical security architecture of a number of strategically important products to ensure they are secure by design. 2. Liaise with the system accreditor(s) and stakeholders to manage expectations and ensure that security requirements are met and risk is reduced to acceptable level. 3. Determine of the security principles for the project solution to work within. 4. Ensure project security is in place including arrangements between suppliers, partners and for reference rigs. 5. Support product security function activities and growth. Additional Accountabilities: Keep up to date in relevant security standards, process and technologies, develop skills and capabilities to be able to provide more effective services Provide help and direction to less experienced team members to support both their effective working and their development. Support the product security special interest group by sharing best practise
Technical Skills: Solid engineering experience and background Flexible to new challenges and skills Attention to detail and able to identify priority areas of focus. Fundamental understanding of computer technologies, how they are networked together, different protocols, operating systems and applications Ability to identify and investigate technology to understand the security flaws and how to mitigate them. Desirable Technical Skills Good knowledge and understanding security risk assessment and RMADS. Good Communication Skills and ability to influence stakeholders (such as an accreditor). Good technical understanding of systems and how their security aspects. Penetration testing skills
To apply for this position, you must be eligible to live and work in the UK and either possess or be able to obtain UK MOD Security Clearance to SC Level.