We’re seeking a talented Cyber Security Engineer to join our team, where you’ll work on critical systems in the defence and maritime domains. This role offers the flexibility of hybrid working across various locations and provides exciting opportunities for growth and development in a supportive, forward-thinking environment.
What You’ll Be Doing:
- Developing risk-based cyber security requirements for systems or subsystems, while offering technical guidance and support for all aspects of cyber security and resilience.
- Conducting cyber security analysis, including creating threat taxonomies, security architectures, baselines, and risk mitigations.
- Producing test plans and schedules, and performing informal and formal cyber security testing.
- Supporting engineering gated reviews and design assurance activities.
- Creating security artefacts such as risk registers, assurance cases, and input for engineering documentation.
What We’re Looking For:
Essential Skills and Experience:
- A degree (or equivalent experience) in a relevant STEM subject or Information Security field.
- Recognized industry security qualifications (e.g., CCP, CISSP, CISM) or the ability to achieve them.
- Demonstrated experience in assessing and managing risk using industry standards (e.g., NIST, ISO 27001).
- Expertise in applying security baselines, mitigations, and controls.
- Strong engineering background and familiarity with a life-cycle phased approach.
Desirable Skills and Experience:
- Product security experience in the defence, maritime, or related domains.
- Knowledge of MOD policies and regulations, such as SPF, JSP 440, JSP 604, and experience producing RMADS.
- Understanding of securing Operational Technologies/Industrial Control Systems.
- Exposure to project management methodologies.
