Job Description
Key Responsibility Areas
The successful candidate will report to the Head of Engineering Products and be responsible for providing security advice to product development teams in a range areas including:
1. Production of Security Managements Plans, work package descriptions and cost estimates in support of product bids, services and proposals.
2. Undertaking security risk assessments, risk mitigation plans, mitigation gap analysis and preparation of security management documentation for system Accreditation.
3. Defining product security requirements, advising development teams on suitable implementation standards and techniques and overseeing product development activities.
4. Liaison with Security Accreditors and Security Assurance Coordinators in support of security accreditation.
5. Preparation of Protection Profiles, Security Targets and Evaluation Management Plans, and liaison with NCSC and commercial evaluation teams in support of evaluation activities.
6. Preparation of TEMPEST Control Plans, advising development teams on appropriate implementation techniques and liaising with TEMPEST test facilities.
7. Advising development teams on suitable platform lockdown and configurations, and supporting Penetration test activities. Analysing penetration test results and preparation of remedial action plans.
8. Prepare and implement throu...