Location: Gloucester (minimum of 2 days per week onsite)
Duration: 6 month initial contract OR permanent
(Inside IR35)
Role
Our client, a leader in the Defence & Security sector, is seeking a Lead System Security Engineer with eDV Clearance to join their team in Gloucester. This role is available as both a permanent position and on a contract basis, with a requirement to work on–site for at least two days per week.
Key Responsibilities:
1. Ensure programme information assets are protected through policy, procedural, and technical enhancements.
2. Act as a trusted advisor to the programme to ensure industry best practice and customer security requirements are met.
3. Lead small consultancy engagements and provide clear, evidence–based reports.
4. Formulate, record, and manage risk effectively.
5. Decompose security requirements and understand their implications.
6. Implement Information Assurance (IA) measures to protect and defend information systems.
7. Apply knowledge of security architecture, PERSEC (personal security), and Cyber Security principles.
Job Requirements:
1. Forward facing (used to talking to/chairing meetings with customers at a senior level)
2. Understanding of formulating, recording and managing risk
3. Understands security requirements and how to decompose them
4. Knowledge of Information Assurance (IA) processes and procedures
5. Understanding/experience of Secure by Design
6. Understanding/experience of waterfall and agile methodologies
7. Understanding how obsolescence impacts Information Assurance
8. Supporting the development of Risk Management Framework documents and controls
Preferred Skills:
1. Worked with MOD or other similar agencies
2. Experience/understanding of Cryptography including processes and procedures
3. Experience of assessment of systems in a non–standard environment
4. Experience of being on a Bid team
5. Understanding of simulated environments (eg actual vs dummy datasets)
6. Working knowledge of ISO 27001 or equivalent standards
7. Working knowledge of NIST Risk Management Framework
8. Hold a current professional Information Security certification or qualification (e.g. CISSP, CISM, CRISC, BCS CITP)
9. DV clearance, or the willingness and ability to become DV cleared
10. Ability to work within a fast–paced environment
11. Demonstrable knowledge of HMG Security Policy Framework, ISO 27001 and NIST Risk Management Framework.
Benefits:
1. Opportunity to work in a fast–paced and dynamic environment.
2. Professional development and training opportunities.
3. Access to a comprehensive employee benefits package.
If you have experience in systems engineering and information security and hold a current eDV clearance, we would love to hear from you. Apply now to join our client's team in Gloucester.
#J-18808-Ljbffr