Job Description:
We have an exciting opportunity for a Cyber Systems Security Engineering Principal Consultant to join Leonardo Cyber & Security Solutions Division. You will be helping our customers deliver and secure their solutions and products. Our Cyber Consulting practice works across a diverse array of sectors including Defence, Telecommunications, Energy, and Finance to help secure national infrastructure in the UK and beyond. Our Practice is certified by the UK NCSC in the provision of advice and guidance to our customers across both enterprise and operational technology across all of the NCSC defined security domains of Governance and Risk Management, Security Architecture, and Compliance.
This is a highly rewarding and hands-on role with exposure across both traditional and cutting-edge IT, Electronics, as well as bespoke Operational Technology systems with a clear and defined pathway to achieve chartership, NCSC certification, and greater responsibility. Your work at Leonardo will see you inspire and lead in solving customer problems in an agile, innovative, and team-centric manner. We are after creative, passionate, technically savvy, and personable people to help grow our practice and solve some of the most challenging, exciting, and critical security challenges to the UK's digital landscape.
The role is based at our offices in Bristol or Luton (hybrid working) and travel will be required to other UK Company and client locations.
What you'll do as a Principal Consultant:
1. Relate - Our customers and their problem are at the heart of what we do, as a Consultant you will help to actively listen and empathise with our customers to build intimacy.
2. Understand - We add value by solving problems, as a Consultant you will help define potential solutions to these problems with only limited information based on your experience and technical knowledge.
3. Assess - At Leonardo we adopt a risk-based approach to any security problem, as a Consultant you will need to identify, measure, and analyse the risks attracted by a given digital system and its information assets through the completion of risk assessments and defining and implementing the enabling governance structures that support this process.
4. Treat - Resolving risks is the technical core of our offering, as a Consultant you will assist in defining appropriate and proportionate security solutions right the way across people, process, and technology aligned to the identified risk picture through the creation of security architecture visions, patterns, and designs.
5. Assure - Giving our customers confidence that security is where it needs to be is a key requirement across heavily regulated industries. As a Consultant you will assist in defining, implementing, and performing assessments of our customer's environment against a given set of criteria spanning people, process, and technology.
6. Develop - All our offerings are based on a core set of products. As a consultant you will assist in building a viable offering as part of the Leonardo business winning process for a customer as well as help in the technical development of our products to be used across our customer sectors.
What we need from you:
1. Degree in an Engineering related discipline, with at least 5+ years of delivery experience.
2. At least 2 Recognised professional certifications in Cyber Security such as Sec+ CISM, CISSP, CRISC, CASP, CEH.
3. Experience of directly managing project delivery and associated metrics such as time, cost, and quality.
4. Experience of and ability to manage multiple stakeholders and their needs with empathy, finding an appropriate balance of listening and speaking.
5. Ability to communicate effectively, written and verbal, with internal and external customers (e.g., Programme Management, Customers, and Suppliers).
6. Candidate must be self-directed, willing to lead/line manage a small team of cyber security consultants/engineers and be able to deliver solutions that will increase the cyber posture of our products.
7. Conduct cyber risk assessment activities including threat modelling, vulnerability analysis, and analysis of mitigation solutions.
8. Develop, evaluate, and analyse design constraints, and detailed system and security design as they pertain to the cyber domain.
9. Experience in decomposing Cyber requirements down to the system control level.
10. Coordinate with other product engineers, system architects, and developers to provide oversight in the development of robust solutions.
11. Conduct cybersecurity test and evaluation of hardware and/or software designs to verify and validate compliance with defined specifications and requirements.
12. Participate in Independent Technical Reviews (ITRs).
13. Experienced in MBSE.
14. Support business winning activities by providing inputs to technical responses and developing cyber security inputs into resourcing estimates.
15. UK SC Clearance or the ability to obtain it as well as other more in-depth security clearances.
Primary Location:
GB - Luton - Cap. Green 300
Contract Type:
Hybrid Working:
Hybrid #J-18808-Ljbffr