In broad terms, you should have as many of the following as possible:
* Experience of owning a security risk management system for highly regulated products based on recognised frameworks such as aerospace, nuclear, automotive, rail or oil & gas;
* People management, mentoring and development skills;
* Practical experience of the System Development Life Cycle, Software Development Life Cycle, Spiral, V-Models and Agile frameworks;
* Effective and flexible communication and interpersonal skills;
* The ability to understand complex engineering processes and the inter-dependency of the process components;
* A passion for promoting and improving the safety and security of complex systems;
* Broad breadth of engineering experience in order to be able to review project demands and advise on resourcing needs, development, delivery plans and structures;
* A passion for engaging with people and developing their careers;
* An ability to demonstrate critical thinking to provide appropriate solutions to recruitment and development;
* Familiarity with the application of cyber resilience controls to embedded systems.
It would be desirable, but not essential, if you also had one or more of:
* Practical experience of ISO27001/27004/27005 or NIST Risk Management Framework (RMF);
* Knowledge of UK/NATO Information Assurance/Accreditation frameworks;
* Knowledge of EASA/FAA Airworthiness Certification frameworks;
* Awareness of current crypto technologies, Key Management Systems & practical COMSEC;
* Chartered Engineer status with a recognised body;
* Awarded or looking to achieve an NCSC Certified Cyber Professional (CCP) recognition;
* Awareness of Information Security (INFOSEC), Communications Security (COMSEC), Transmission Security (TRANSEC), Product Safety and their inter-relationship;
* Experience of producing and delivering training/awareness material within a corporate environment;
* Familiarity with incident investigation and implementation of an investigation process such as used by the Air Accidents Investigation Branch (AAIB).
Given the nature of the work, we are able to offer custom working; however, some on-site working is expected.
Security Clearance:
You must be eligible for full security clearance. For more information and guidance, please visit: Security Vetting Clearance Levels.
Diversity Statement:
We are relentless about inclusion. We understand an inclusive environment is one that welcomes everyone as they are. We see diversity as a strength. We still have some way to go to achieving diverse teams across our whole business. We would like you to be part of our journey to creating that better balance and welcome applications from all individuals from all walks of life as we build a stronger company together.
Primary Location:
GB - Luton - Cap. Green 300
Contract Type:
Hybrid Working:
Hybrid
#J-18808-Ljbffr