Requirements
Must have:
- Degree (or equivalent experience) in a relevant STEM subject or Information Security related - Holds NCSC CCP SIRA status (or able to achieve) - Member of a professional institute - Proven experience of assessing and managing information risk in line with industry good practice - Experience of assessing and advising on controls to support Product Safety - Proven experience of applying Product Security/Information Security concepts to applicable technologies within the environment (or similar) - Good understanding of information security principles and the potential impact to Product Systems - Knowledge of security-related activities required to support the engineering lifecycle - Experience of Product Security Engineering activities in the defence, maritime or closely linked domain - Ability to speak knowledgably and credibly with customer, user and internal stakeholders
Responsibilities:
- Identify, analyse and evaluate information risks - Document and present risk management options to the business - Participate in discussions related to information security - Support and contribute to information security professional bodies and industry forums - Mentor and provide support to others in the team - Stay updated on current industry good practices and continuous improvement - Evaluate the impact of information risks and provide advisory support on mitigation strategies - Engage stakeholders to explain the causes of information risks and their operational implications
Company:
We are a leading Defence company based in the UK, offering a 12-month contract for a Principal Product Security Engineer. This role provides an exciting opportunity to work in a hybrid environment, with 2-3 days each week on-site in locations such as Frimley, Barrow, or Weymouth. We offer a competitive salary of £85.40 per hour (Umbrella Inside IR35) and are committed to fostering an inclusive and dynamic team atmosphere.