£36000 - £50000 per annum + Excellent
12 months ago
Information Security (Infosec) Engineer
Cyber Threat Assessment Capability; Product Security; Shaping the technical security architecture; RMADS
£40,000 - £55,000 + excellent benefits
Would you like the new challenge of making an impact on some of the biggest projects in the UK defence market right now? Join our highly-skilled Combat Systems team and you'll be part of something you can be proud of; equipping the Royal Navy with another world class capability.
This is a fantastic opportunity to work with advanced technology to minimise the risk of both cyber threats and social attacks.
As an Information Security Engineer working within the office of the CTO, you will be tasked with investigating and ensuring our products across the Maritime Sector are secure by design, achieve security accreditation and maintain security through-life.
Your main responsibilities as an Information Security Engineer will involve:
Producing impact studies for Cyber Threat Assessment Capability and development of the solution
Management of Product Security within the CTO
Investigating new and emerging technologies to understand security risks, mitigations and solutions.
Ensuring CTO compliance with CTO Security Management Plan
Supporting CTO liaison with Academia on Product Security matters
Designing and shaping the technical security architecture of a number of strategically important products to ensure they are secure by design
Producing documentation such as product security architecture and Risk Management Accredited Document Set - (RMADS) for support of accreditation. Collecting evidence for the security case
Keeping up to date in relevant security standards, process and technologies, develop skills and capabilities to be able to provide more effective services
Your skills and qualifications:
Ability to identify and investigate technology to understand the security flaws and how to mitigate them
Fundamental understanding of computer technologies, how they are networked together, different protocols, operating systems and applications.
Good knowledge and understanding of security risk assessments and RMADS (Risk Management Accredited Document Set) or alternatively other formal security risk assessments or audits such as ISO 27000 family of standards, JSPs, NIST (National Institute of Standards in Technology) etc.
Good technical understanding of systems and how their security aspects are applied and affect performance
Systems engineering experience and background
An understanding of Defence Standards/Security Regulations
Benefits: Our employees receive an excellent benefits package which includes a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. We also offer a range of additional benefits such as flexible working, an employee assistance programme, Cycle2work and many local and national employee discounts. Some employees may also be eligible for an annual incentive.