Principal Engineer Product Security PSec Analyst
Location:
Any of the following locations: Barrow in Furness, Frimley, Filton, Coventry, Brough Salary:
£83.41 an hour Umbrella OR £72.40 PAYE Inside IR35 Contract Duration:
12 Month Contract initially. Typical Duties Include:
Provide advice on Product Security matters for programmes to a wide range of stakeholders including System Engineers, Engineering Managers, and Technical Authorities as required. Gain sufficient understanding of a system, its concept of use, and architectures to provide an accurate assessment of Product Security regarding possible threats and potential avenues of attack. Select appropriate Product Security techniques that are consistent and repeatable for use across a programme. Provide relevant guidance on the threat environment for a programme. Ensure that Product Security analysis of a project, system, or equipment is delivered and managed using recognised risk analysis techniques. Fully document Product Security analysis work to enable risk management throughout the product lifecycle. Contribute and influence the development of Product Security strategies, policies, guidance, good practices, and awareness. Recommend appropriate controls to mitigate identified risks in line with government and MOD policies and good practice for cost-effective risk mitigation. Present risks and proposed controls to internal and external stakeholders to achieve agreement and buy-in. Plan and manage work concurrently across multiple security work programmes. Provide regular updates on project status/progress in accordance with project-specific reporting cycles. Represent the Product Security group at Design Reviews and other engagements to ensure that Product Security is appropriately considered at each stage of the design lifecycle. Undertake peer reviews as directed. Provide technical guidance and supervision to other Product Security engineers and support the management and planning of specialist activities. Provide technical guidance and support in relation to product incident management. Knowledge:
Good understanding of information security principles and able to advise on the potential impact to Product Systems. Experience of Product Security Engineering activities in the defence, maritime, or closely linked domain. Knowledge of security-related activities required to support the engineering lifecycle with experience operating in the relevant phase. Proven experience of assessing and managing information risk in line with industry good practice. Skills:
Experience of assessing and advising on controls to support Product Safety. Proven experience of applying Product Security/Information Security concepts to applicable technologies within the environment (or similar). Supports and contributes to information security professional bodies and industry forums. Demonstrated experience of mentoring and/or providing support to others. Membership in a professional institute. Demonstrated continuous improvement, professional development, and awareness of current industry good practice. Qualifications:
Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Holds NCSC CCP SIRA status (or able to achieve). For more information please contact Lauren Morley at JAM Recruitment or click apply.
#J-18808-Ljbffr
Any of the following locations: Barrow in Furness, Frimley, Filton, Coventry, Brough Salary:
£83.41 an hour Umbrella OR £72.40 PAYE Inside IR35 Contract Duration:
12 Month Contract initially. Typical Duties Include:
Provide advice on Product Security matters for programmes to a wide range of stakeholders including System Engineers, Engineering Managers, and Technical Authorities as required. Gain sufficient understanding of a system, its concept of use, and architectures to provide an accurate assessment of Product Security regarding possible threats and potential avenues of attack. Select appropriate Product Security techniques that are consistent and repeatable for use across a programme. Provide relevant guidance on the threat environment for a programme. Ensure that Product Security analysis of a project, system, or equipment is delivered and managed using recognised risk analysis techniques. Fully document Product Security analysis work to enable risk management throughout the product lifecycle. Contribute and influence the development of Product Security strategies, policies, guidance, good practices, and awareness. Recommend appropriate controls to mitigate identified risks in line with government and MOD policies and good practice for cost-effective risk mitigation. Present risks and proposed controls to internal and external stakeholders to achieve agreement and buy-in. Plan and manage work concurrently across multiple security work programmes. Provide regular updates on project status/progress in accordance with project-specific reporting cycles. Represent the Product Security group at Design Reviews and other engagements to ensure that Product Security is appropriately considered at each stage of the design lifecycle. Undertake peer reviews as directed. Provide technical guidance and supervision to other Product Security engineers and support the management and planning of specialist activities. Provide technical guidance and support in relation to product incident management. Knowledge:
Good understanding of information security principles and able to advise on the potential impact to Product Systems. Experience of Product Security Engineering activities in the defence, maritime, or closely linked domain. Knowledge of security-related activities required to support the engineering lifecycle with experience operating in the relevant phase. Proven experience of assessing and managing information risk in line with industry good practice. Skills:
Experience of assessing and advising on controls to support Product Safety. Proven experience of applying Product Security/Information Security concepts to applicable technologies within the environment (or similar). Supports and contributes to information security professional bodies and industry forums. Demonstrated experience of mentoring and/or providing support to others. Membership in a professional institute. Demonstrated continuous improvement, professional development, and awareness of current industry good practice. Qualifications:
Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Holds NCSC CCP SIRA status (or able to achieve). For more information please contact Lauren Morley at JAM Recruitment or click apply.
#J-18808-Ljbffr
