AVEVA is creating software trusted by over 90% of leading industrial companies.
Job Title: Principal Security Consultant
Location: Cambridge, London, Derry/Londonderry, United Kingdom
Employment Type: Full-time, 1-year Fixed Term
The job
AVEVA is a global leader in industrial software, driving digital transformation and sustainability. By connecting the power of information and artificial intelligence with human insight, AVEVA enables teams to use their data to unlock new value. We call this Performance Intelligence. AVEVA’s comprehensive portfolio enables more than 20,000 industrial enterprises to engineer smarter, operate better and drive sustainable efficiency. AVEVA supports customers through a trusted ecosystem that includes 5,500 partners and 5,700 certified developers around the world. The company is headquartered in Cambridge, UK, with over 6,500 employees and ninety offices in over forty countries. Learn more at www.aveva.com.
We take pride in our core values and the diversity of our people, valuing the unique experience and expertise that people from diverse backgrounds bring to our business. At AVEVA, we are all about Limitless possibilities. Are you?
The Principal Security Consultant is a 1-year fixed-term employee position, a critical role in shaping and establishing AVEVA’s 2nd Line of Defence Security consultancy capabilities and services.
This role will be responsible for providing insightful knowledge and actionable recommendations to achieve AVEVA’s target operating model for security and increase the maturity of existing processes and systems. One focus of this 12-month work package is to improve transparency of security operations and compliance for customers. We will be enhancing our Trust Centre and streamlining security engagement on customer contracts.
The post holder will be expected to quickly integrate into the team, proactively engage with stakeholders across the business, from technical SMEs to business leadership. They will need to work independently and prioritize their time across multiple projects and engagements.
Key Responsibilities
1. Implementation of Security Policy & Standards. Provide subject matter expert knowledge and support on developing policy, standards, and exemption services to enable controls and supporting control practices to be embedded and optimized across the organization. Includes optimizing underpinning risk and control indicators.
2. Implementation of Security Risk Management & Assurance. Provide subject matter expert knowledge on developing security risk management and risk assurance services that enable effective, data-driven risk management and reporting across operations. This includes monitoring and reporting on the effectiveness of risk management within the product development lifecycle and supply chain.
3. Gathering and Reviewing Evidence for Compliance. Conduct discovery investigations to demonstrate compliance with regulations, standards, and customer requirements, and present evidence in a consumable format for customers, regulators, etc.
4. Implementation of Security Control Systems. Provide subject matter expert knowledge to enable adoption, adaptation, and optimization of security controls across the organization, including within the product development lifecycle and supply chain.
5. Stakeholder Engagement. Build and maintain trusted relationships to embed security risk practices into operational activities, providing guidance and thought leadership on risk best practices and assurance to both technical and non-technical stakeholders.
Essential Requirements
1. Experience. Preferably 7+ years relevant experience in security governance, risk, and compliance, with at least 3 years in a senior expert or managerial role. Experience in a software publishing or internet business is preferable.
2. Governance. Significant experience in developing, implementing, and optimizing security policies, standards, and control sets across organizational departments.
3. Risk Management and Assurance. Extensive experience in assessing residual security risks using threat, security control performance, and business operations, including within the product development lifecycle and supply chain.
4. Regulatory Compliance. Experience working within a regulated environment, advising on major legislation and regulations such as GDPR, NIS2, and EU Data Privacy rules.
Desired Skills
1. Organizational Skills. Skilled in managing multiple tasks within deadlines while managing expectations.
2. Communication Skills. Excellent at conveying complex information clearly to diverse audiences, including technical and non-technical stakeholders.
3. Decision Making. Skilled in tactical decision-making with organizational impact.
4. Problem-solving. Capable of addressing challenges quickly with operational solutions and deconstructing complex problems into understandable and executable solutions.
Digital Security at AVEVA
Our Digital Security team protects AVEVA’s digital assets and supports our move to the cloud. As cyber threats grow, our role becomes increasingly vital. If you are a collaborative problem solver passionate about cybersecurity, you'll find fulfillment and opportunity here. Learn more at https://www.aveva.com/en/about/careers/.
UK Benefits include:
Flexible benefits fund, emergency leave, adoption leave, 28 days annual leave (plus bank holidays), pension, life cover, private medical insurance, parental leave, education assistance. Benefits vary by country but are similarly comprehensive. More info at https://aveva.com/en/about/careers/benefits/.
Hybrid working
Employees are expected to be in their local AVEVA office three days a week; some roles may be fully remote or support specific customers or markets.
Hiring process
Interested? Submit your cover letter and CV via our application portal. We are committed to inclusive hiring and providing reasonable support during the application process. More info at https://aveva.com/en/about/careers/hiring-process.
About AVEVA
AVEVA is a global leader in industrial software, with over 6,500 employees in more than 40 countries. We are dedicated to sustainability and inclusion, with ambitious 2030 targets. Learn more at sustainability-report.aveva.com and aveva.com/en/about/careers/.
All applicants must pass drug screening and background checks. We are an equal opportunity employer committed to diversity and inclusion. Reasonable accommodations are available for applicants with disabilities.
#J-18808-Ljbffr