Skip to main content
AdobeStock_425318986-2000x400
Stem recruitment specialists

Find your future role

Job title

Lead Security Engineer

Ref no. BHN544681
Location Bristol, England
Start date ASAP
Job type Contract 12 months
Job status Closed

Job summary

The Lead Security Engineer will provide clear security direction and delivery oversight to the team of programme product security engineers whilst providing support to the programme Engineering Delivery Manager.

Key skills required for this role

SC Cleared Lead Security Engineer

Important

SC Cleared Lead Security Engineer

Job description

Role Title: Lead Security Engineer
The Lead Security Engineer will provide clear security direction and delivery oversight to the team of programme product security engineers whilst providing support to the programme Engineering Delivery Manager. The post holder will oversee the technical management, development, delivery and maintenance of the Project Product Security (PSec) activities and outputs. These include risk management and accreditation documentation, security management planning, security architectures, security test plans and assurance cases.
The role is required for a temporary period, initially expected to last between six to nine months in order to accelerate programme product security activities. The Lead Security Engineer will work in collaboration with the Principle Product Security Engineer (who retains responsibility for line management of the product security engineers on the programme). The scope of work covers leads the following security projects on the programme:
1. Delivery of the reference Security Architecture and associated artefacts and models.
2. Associated development and test environment accreditation(s)
3. Delivery of security accreditation evidence pack for product delivery.
The Lead Security Engineer shall:
? Lead the management of Customer (security) stakeholders (internal and external).
? Coordinate and support the customer stakeholders to establish Project's Security goals and Product Security requirements.
? Ensure all stakeholders understand and adhere to the contracted Product Security rules and procedures and foster best practice.
? Maintain Project Security Management Plans and System Security Architecture Document.
? Mature the definition and manage the schedule of product security activities across the projects.
? Lead the Programme PSEc and architecture / design teams to undertake Product Security risk identification, management and assessment activities.
? Lead the construction and delivery of the risk management and accreditation documentation (RMADS)
? Lead engagement with internal and external customers, ensuring that their requirements are fully considered and adequately supported where appropriate and agreed.
? Produce, present and articulate clear and logical technical product security arguments
? Complete peer reviews, checking, verification and assurance tasks to demonstrate the adequacy and robustness of the product security documentation.
? In partnership with the MOD Security Assurance Coordinator, support the appropriate meetings and Working Groups, providing the chair as appropriate.
? Provide programme status updates, identify problem areas and implement agreed recovery plans to the Engineering Delivery Manager.
? Lead appropriate meetings and working groups, support adjacent transversal disciplines to ensure coherence (for example safety engineering).
? Deliver presentation material to support project design review major events.
2 | P a g e
Specific Key Accountabilities and Deliverables;
? Leadership of the product security team
? Provision of clear direction to a team product security engineers
? Management of Product security Plans.
? Security risk identification and management.
? Risk assessment.
? Review of product security documents
Qualifications and experience;
Essential:
? Demonstrable leadership Skills
? CISSP or CISM
? CCP Senior SIRA or equivalent
? Extensive background in managing cyber risk using different methodologies, e.g. NIST, ISO27001, IS1/2, MITRE and STRIDE at a technical level
? Significant experience of managing security at a programme level (ideally within a defence or government context)
? Demonstrable experience of HMG Cyber Accreditations.
? SC Cleared
? Experience of working within an Engineering Lifecycle.
Desirable:
? Degree Qualified in a STEM or IT subject
? Qualified in offensive Cyber Security
? Project Management Skills
? ITIL
? Exposure to UK MoD policies and processes

Matchtech is a STEM Recruitment Specialist, with over 35 years’ experience

Learn more about Matchtech

Let us find jobs for you