Cyber Security Lead Everything we do is built on a commitment to do the right thing for our customers, our people and our community. Our mission and our values guide the way we do business. The foundation of our Leidos culture is our Values, Beliefs and Expectations by which we select, recognise and reward employees. They create the environment that drives us toward our mission. Inspired to make a difference, we are committed to solving the world’s toughest problems. Passionate about customer success by being determined to understand and respond to our customers’ needs as if they were our own. United as a team, we are bound together by our conviction that ethics and integrity is core to how we operate. Because of a key strategic development and a new exciting business opportunity, we have a requirement for a security-cleared Cyber Security Architect based in the UK working at our Farnborough site and remotely. Leidos has more than 30 years’ experience of developing and running some of the largest government systems in the world. We are currently hiring to expand our UK based technical team who support our delivery for the UK Govt. Come join our team and further develop your skills as we deliver and support systems key to the defence of the UK and partner nations. Being part of the Leidos team is a commitment to push yourself and those around you to do better, constantly adapt and learn new technologies. We’re a passionate team and are committed to developing and growing our staff. Leidos is a global science and technology solutions leader working to solve the world's toughest challenges in the defence, intelligence, homeland security, civil, and health markets. The company's 33,000 employees support vital missions for government and commercial customers. WHAT WILL YOU BE DOING? As a result of some exciting programme wins, we currently have a permanent vacancy for a Cyber Security Lead to support the development and transition into live of a new IT application and infrastructure solution providing support to a critical operational end user. Leidos is seeking an enthusiastic protective security specialist to lead the implementation and assurance of security within a key defence project. The incumbent will possess specialist skills in all areas of protective and information security and have demonstrable experience of applying security frameworks such as Government Functional Standard 007. They will be joining a team of highly skilled and highly motivated individuals who are working on one of the UKs leading programmes. Required Skills: As a Cyber Security Architect, you will be able to work with minimal direction on a specific MOD programme. You will ensure that the solution security design meets the customer functional and non-functional security requirements and provides the necessary assurance to our client, highly likely to be backed up by rigorous assurance and certification processes, normally HMG standards (including MOD-specific JSP), NCSC and NIST 800 standards. You will have responsibility for interfacing to security design partners across the programme, both customer and supplier representatives, and colleagues within our engineering, service, and business development teams. You will ensure that Leidos can establish and maintain an effective and efficient security architecture for the programme, and that the designs will be able to adapt as customer requirements, legislation and assurance standards change over the programme lifespan. Within the programme, the role will primarily be responsible to a solution architect and Chief Engineer for developing and delivering the relevant elements of the solution, whilst understanding the whole. You will be required to work in both delivery and change proposal environments. You will have a complete understanding of cyber risk and treatment approaches. Based on a strong ability to communicate risk and its proportionate management, you will know how this issue is addressed both in traditional ‘on-premise’ highly sensitive platforms, and in public cloud technologies. You will be experienced and accomplished in meeting the challenges associated with assuring systems in public and private cloud environments. You will be required to develop high- and low-level security architecture designs for systems intended for secure/sensitive environments, with appropriate security based on detailed risk analysis. SABSA qualifications and experience would be desirable. You will be required to hold security clearance under National Security Vetting processes. You may need to work on customer locations or one of our secure development locations, or a mix of both, as well as an element of working from home. Essential British - Non-dual national – many of our projects have nationality restrictions. DV cleared Process Skills/Experience Experience of a taking a defence in depth and multi layered approach to security architecture Experience of applying commensurate detective and protective security controls to reduce risk to an acceptable level Understanding of the controlling processes for, and experience of a significant portion of, the systems engineering lifecycle (e.g. requirements management, configuration management) Understanding of different lifecycles/methodologies (incremental, SAFe agile, DevOps) Experience of the key engineering lifecycle reviews – e.g. System Requirements Review (SRR), Critical Design Review (CDR) Experience in performing design trade off working with other architects and engineers to deliver an integrated and coherent solution Understanding of service operations and security operational management planning Experience working in both delivery and proposal environments Experience of Defence Digital and relevant solutions and approaches across MOD Technology skills/Experience Excellent understanding of Confidentiality, Integrity and Availability (CIA) and practical experience in applying that Experience in defining derived security requirements for a system, and managing traceability Experience of gaining and maintaining accreditation or assurance for secure/sensitive systems Experience in producing security assurance documentation sets (such as SyOPS, Security Management Plan, ISMS, and to support DART submissions) Experience of network and boundary protection technologies (firewalls, mail gateways, load balancers, anti-virus), including cross domain technologies. Experience of authentication and authorisation technologies (SAML, LDAP, PKI, etc) Experience of security infrastructure in Public and Private cloud, e.g. virtual network infrastructure, hybrid IaaS/PaaS/SaaS solutions. Experience of Virtualisation technologies. Understanding of MOD ISN 23/09 Secure by Design. Understanding of the implementation, operation and maintenance of SIEM products The ideal candidate will hold CISSP certification and other industry qualifications such as Risk or Public/Private Cloud certifications. Communication and Soft Skills Excellent verbal and written communication skills and works well in a team environment Capable of developing and communicating a vision to meet the System Requirements Ability to communicate complex technical ideas across a wide range of different audiences A good level of commercial awareness that will support the bid and delivery environments Are you ready to make an impact? Begin your journey of a flourishing and meaningful career, share your CV with us today What we do for you: At Leidos we are PASSIONATE about customer success, UNITED as a team and INSPIRED to make a difference. We offer meaningful and engaging careers, a collaborative culture, and support for your career goals, all while nurturing a healthy work-life balance. We provide an employment package that attracts, develops and retains only the best in talent. Our reward scheme includes: • Contributory Pension Scheme • Private Medical Insurance • 33 days Annual Leave (including public and privilege holidays) • Access to Flexible benefits (including life assurance, health schemes, gym memberships, annual buy and sell holidays and a cycle to work scheme) • Dynamic Working Commitment to Diversity: We welcome applications from every part of the community and are committed to a truly diverse and inclusive culture. We foster a sense of belonging, welcoming all perspectives and contributions, and providing equal access to opportunities and resources for everyone. If you have a disability or need any reasonable adjustments during the application and selection stages please let us know, and we will respond in a way that best fits your needs. Who We Are: Leidos UK & EUROPE – we work to make the world safer, healthier, and more efficient through technology, engineering and science. Leidos is a growing company delivering innovative technology and solutions focused on safeguarding critical capabilities and transformation in frontline services, our work in the United Kingdom includes addressing some of the most complex problems in defence, healthcare, government, safety and security, and transportation. What Makes Us Different: Purpose: you can use your passion and abilities at Leidos to keep the people you care about safe. We are at the forefront of machine learning, AI, cyber security and solutions. Using your skills in the technology frontline by helping to build a safer world. You can inspire change. Collaboration: having flexibility to do your job is one of our core benefits, enabling you to become part of our extraordinary team. We have been empowering our people to work flexibly for years. Whether you work from home, the office or on customer sites, we will give you the digital tools and the flexibility to work smarter and align your needs and ours. People: Leidos empowers people from every background to be themselves and gives you the tools to learn new skills by enabling growth whilst developing. We believe that extraordinary people need opportunities to grow, to be inspired and to inspire others. At Leidos, we invest in technical academies, career rotations and a career development plans that enhance your future. Original Posting Date: 2024-11-15 While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. Pay Range: The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.