Key skills
CRisk Management
About this role
Role Overview
- Operate as the Security signatory on behalf of the company.
- Liaison with Security Accreditors and Security Assurance Coordinators in support of security accreditation.
- Participate in Product Security Panels as a specialist advisor to manage and resolve security incidents.
- Maintain an up-to-date knowledge of security legislation.
- Participate in company working groups to monitor proposed changes to the legislative environment.
- Provide input and advice to the product development teams.
- Operate as a consultant to promote security culture within Leonardo working with Security teams to ensure secure working practices are maintained.
- Develop and deliver training courses and speak with confidence on Product Security and Information Assurance matters.
- Perform audits of internal and external/subcontract teams assuring that security and Information Assurance requirements are achieved.
Requirements
- Has hands-on experience of developing robust security risk management system for complex high integrity electronics systems.
- Familiarity with Legislation – e.g. IPA, DPA, Official Secrets Act.
- Registered NCSC Certified Professional at lead level, or equivalent NCSC recognised qualification.
- Knowledge of UK/NATO Information Assurance standards, procedures & systems, including HMG Security Policy Framework, ISO security standards, DO326A.
- Familiarity with the principles of incident investigation and how to implement an investigation process.
- Practical experience of NCSC and Common Criteria security evaluation techniques.
- Knowledge of current Crypto technologies, Key Management Systems & practical COMSEC implementations.
- Regularly delivered training courses within a Company and delivered awareness presentations to other groups.
- Awareness of product security implications relating to safety.
- A background in design implementation of high integrity complex electronics, such as Software design to DO178C level C, Complex Electronics hardware up to DO254 Level.
- Experience in delivery and maintenance of products to meet regulatory requirements, for example MAA DAOS, ARP4754.
- Understanding of the role of advisory boards within the UK Government or NATO for security.
- The most important skill is a good attitude and willingness to learn.
Benefits
- Time to Recharge : Enjoy generous leave with the opportunity to accrue up to 12 additional flexi-days each year.
- Secure your Future : Benefit from our award-winning pension scheme with up to 15% employer contribution.
- Your Wellbeing Matters : Free access to mental health support, financial advice, and employee-led networks championing inclusion and diversity (Enable, Pride, Equalise, Armed Forces, Carers, Wellbeing and Ethnicity).
- Rewarding Performance : All employees at management level and below are eligible for our bonus scheme.
- Never Stop Learning : Free access to 4,000+ online courses via Coursera and LinkedIn Learning.
- Refer a friend : Receive a financial reward through our referral programme.
- Tailored Perks : Spend up to £500 annually on flexible benefits including private healthcare, dental, family cover, tech & lifestyle discounts, gym memberships and more.
- Flexible working : Flexible hours with hybrid working options.