Job Title: Senior Cyber Security Assurance Specialist Location: Preston or Frimley. We offer a range of hybrid and flexible working arrangements – please speak to your recruiter about the options for this particular role. Salary: Circa £60,000 depending on skills and experience What You’ll Be Doing Deliver assurance services to the business, SS EIT, IM&T Sector and Group Functions, covering enterprise systems / services and cloud Identification of risk and appropriate mitigations, development & analysis of secure solutions (covering technical / physical / procedural / personnel controls) and assessment of compliance with internal and external standards and regulations Deliver documentation to demonstrate compliance to internal and external stakeholders Assessment and provision of control effectiveness in managing cyber security risk Provide security architecture / technical input into the development of secure solutions Coaching and mentoring junior members of the team Support development of strategy and continual service improvement for the cyber assurance function Act as a subject matter expert regarding cyber assurance activities for the wider organisation Essential Your skills and experiences: Educated to degree level (or equivalent) preferably in a related discipline (ICT/Computing, Information assurance, risk management, vulnerability/threat assessment) or equivalent, related work experience Knowledge of information security standards, such as HMG, NCSC Guidance, ISO 27001/18, NIST 800, HMG is fundamental Capable of a very high standard of written communication including experience of writing complex reports and giving formal presentations to senior business peers In-depth knowledge of industry standard security policy, standards and good practice guidance and their application to a variety of IT solutions processing protectively marked information Desirable Knowledge of NIST 800–53 & NIST 800-171 Benefits As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts – you may also be eligible for an annual incentive. The EIT Cyber Assurance Team The Cyber Assurance Team within Shared Services are part of Enterprise IT (EIT) with responsibility for assuring all enterprise managed systems and services, spanning UK/RoW. The team ensure systems / services are built and configured in-line with applicable Cyber Security Standards. In addition, the team conduct through-life assurance of controls ensuring they are operating effectively to combat the threats and risks BAE SYSTEMS face and adhere to our regulatory certifications. EIT Cyber is growing team with huge opportunity for development within a diverse landscape. Why BAE Systems? This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Closing Date: 10th January 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.