Job Title: Information Security Consultant
Location: Portsmouth Navel Base. We offer a range of hybrid and flexible working arrangements – please speak to your recruiter about the options for this particular role.
Salary: Up to £45,000 dependent on experience
What you’ll be doing:
* Have a strong experience in enterprise products and the service Life-Cycle Management (LCM) process. This requires a technical understanding of products and applying MOD Secure by Design (SbD) process through the LCM
* Create technical Security Operating (SecOps) documentation to ensure the correct level of security is designed into systems in line with MOD best practice; applying methods of handling classified information and need-to-know principles
* Manage and conduct security improvement projects as directed by the Information Security Risk Register across Maritime Service to improve security processes and ways of working
* Project Manage delivery of security improvements using metrics and charts to demonstrate continual security improvement
* Have a good ability to communicate, be clear and articulate in the delivery of messages, have a very good command of written English as there is a requirement to write guidance and procedure documents
Your skills and experiences:
* Working knowledge of information security, and application of Standards, e.g. NIST800/53, ISO27001:2022, DEFSTANs, DEFCONs, ISNs
* Knowledge and understanding of Governance Risk and Compliance (GRC), i.e. current legislation, standards, processes, guidance and tools used in security engineering
* Knowledge and understanding of information security risk assessment and the use of risk assessment frameworks, e.g. ISO27005:2022
* Experience in production of clear concise documentation suitable for risk reduction process. Have a working knowledge of Secure-by-Design
* Experience in management of risk reduction projects, by engaging with stakeholders, communicating risk, defining solutions for improvement, and managing cross business solution teams
Benefits:
As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts – you may also be eligible for an annual incentive.
The Information Security team:
The information security team looks after the classification & handling of company and government information. The team controls access to the information through controls on to the IT network, ensures that only approved information is transmitted, information is correctly stored, and when travel happens that secure procedures are followed. In addition, the team performs Risk and Incident Management. This role will have the team ensure that users of different Hardware and Software platforms correctly handle classified information and sufficient need-to-know principles are applied.
Why BAE Systems?
This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals.
We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.
Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.
Closing Date: 8th April 2024
We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
#J-18808-Ljbffr