Job Title: Information Security Classified Networks Technical Assurance Lead
Location: Guildford, with some option for hybrid working.
We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role.
What you’ll be doing
* Technical Risk Management: Conduct in-depth technical risk assessments of IT systems, networks, and applications. Identify potential vulnerabilities and recommend mitigation strategies.
* Accreditation and Compliance: Lead accreditation work, maintain compliance with frameworks such as Secure by Design, NIST-800-53, STRAP.
* Security Testing: Scope and oversee penetration testing, vulnerability scanning, and other security validation activities.
* Design and Architecture Review: Assess Information Security of IT architecture and system designs, providing recommendations for secure design principles.
* Policy and Standards: Develop and enforce technical security policies, procedures, standards, and guidance.
* Continuous Improvement: Identify gaps in security controls and processes, driving initiatives to enhance security assurance capabilities.
* Stakeholder Communication and Reporting: Provide detailed assurance reports to stakeholders, communicate technical risks and mitigation strategies effectively.
* Collaboration with Teams: Work closely with engineering, development, and operations teams to embed Information Security into workflows.
* Security Assurance Framework Development: Review and revise Information Security frameworks for assessing security posture.
* Promoting high security standards and integrity.
Your skills and experiences
* Expert understanding of security concepts and principles (CIA triad, risk management, compliance frameworks).
* Expert understanding and application of UK government and defence Accreditation standards.
* Robust knowledge and experience in developing and reporting performance and risk metrics.
* Strong organisational, time management, and diplomacy skills.
* Independent tasking and project completion with little supervision.
* Excellent analytical and problem-solving skills.
* Excellent written and verbal communications.
* Expert application of MS Office and other widely used office automation software.
* Experience in Government/List X/Facilities Security Clearance.
* Ability to obtain a high level of Government Security Clearance.
* Assist with any security tasks as deemed appropriate by the Head of Information Security or Chief Security Officer.
* Promote and ensure BAE Systems Behaviours.
* Must already hold UKSV with the ability to obtain Developed Vetting National Security Clearance.
* Must be a UK National.
As well as a competitive pension scheme, BAE offers employee share plans, an extensive range of flexible discounted health, wellbeing & lifestyle benefits.
The Information Security team is critical to BAE Systems. You will be part of a small, but highly effective and supportive team.
Why BAE Systems?
This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity, rewards integrity, and merit.
Please be aware that many roles at BAE Systems are subject to security and export control restrictions. All applicants must achieve Baseline Personnel Security Standard.
#J-18808-Ljbffr