Job Requirements
At Quest Global, it's not just what we do but how and why we do it that makes us different. With over 25 years as an engineering services provider, we believe in the power of doing things differently to make the impossible possible. Our people are driven by the desire to make the world a better place—to make a positive difference that contributes to a brighter future. We bring together technologies and industries, alongside the contributions of diverse individuals who are empowered by an intentional workplace culture, to solve problems better and faster.
We are seeking an experienced Information Assurance / Product Security Engineer to join our growth UK Defence business to work on critical UK Submarine projects. We are looking for Subject Matter Experts (SMEs) who can support review and assessment of Combat Systems equipment Information Assurance suitability and qualification.
The role will involve provide a key role in acceptance of equipment onto our Royal Navy Submarine Fleet.
Key Responsibilities
* Performing risk assessments using multiple methods including IS1, ISO27001, NIST, Mitre, STRIDE.
* Review IA (PSEC) requirements compliance Statements from suppliers, to support Design Verification reviews and production of Security Case including residual risk assessment.
* Produce test plans,
* Supervise security / penetration testing,
* Review Security Test Findings (SECRET) to support validation of IA requirements
* Production of Security Case (SECRET) including residual risk assessment.
We are known for our extraordinary people who make the impossible possible every day. Questians are driven by hunger, humility, and aspiration. We believe that our company culture is the key to our ability to make a true difference in every industry we reach. Our teams regularly invest time and dedicated effort into internal culture work, ensuring that all voices are heard.
We wholeheartedly believe in the diversity of thought that comes with fostering a culture rooted in respect, where everyone belongs, is valued, and feels inspired to share their ideas. We know embracing our unique differences makes us better, and that solving the worlds hardest engineering problems requires diverse ideas, perspectives, and backgrounds. We shine the brightest when we tap into the many dimensions that thrive across over 21,000 difference-makers in our workplace.
Work Experience
* Proven experience of Product Security Engineering activities within in the defence, maritime or other regulated industries.
* Experience of Information Assurance risk assessment and management
* Strong understanding of Secure by Design principles
* Professional Cyber security qualifications such as Full Member CIISec, CISSP, Chartered Cyber professional.
* Strong knowledge of MOD security requirements (JSP 440,JSP 604, DEFSTANs)
* UK sole national able to obtain Security Clearance (SC)
* Travel will be required to supplier sites