Location(s): UK, Europe & Africa : UK : Guildford || UK, Europe & Africa : UK : Gloucester
Job Title: Information Security Classified Networks Deputy
Location: UK – Guildford, Gloucester - predominantly office based
Role summary:
Classified Networks are a crucial part of our delivery portfolio which provides a diverse range of services to our clients. We are looking for a talented and enthusiastic individual possessing excellent technical and client-facing skills, to provide subject-matter expertise principally within the organisation as well as to our customers.
Classified Networks Deputy is a role which falls within the Security function and responsibilities range from project work, change control management, risk assessment, vulnerability governance, incident review, penetration testing and compliance activities. As part of the Information Security team, the successful candidate will enable best practice and adherence to compliance frameworks. Additionally, working in the classified space, would require the ability to be able to obtain Developed Vetting clearance.
What you’ll be doing:
* Classified Network security contact, primary point of enquiry and guidance.
* Helpdesk requests within defined SLA's, e.g. change requests, risk assessments, security management plans, code of connection.
* Security incident review in conjunction with Information Security Operations, effectively prioritise and escalate incidents, including process violations, virus alerts, SOC tickets and other threat intelligence.
* Assessment and validation of new technology solutions with regard to security and risk. In liaison with Company SME’s and/or Contractors to ensure all vulnerabilities of new products and services are properly addressed using appropriate GRC techniques.
* Classified Network Auditing and Compliance reviews including penetration testing.
* Vulnerability management (patching, COTS & OS) assessments together with remediation instruction.
* Promote the Information Security requirements and regimes within the Company and work to improve security outcomes.
* Assist in activities to maintain compliance within Digital Intelligence policies, BAE Systems plc and ISO standards. In addition, adherence to customer mandated Cyber and Government frameworks and compliance with associated legal and regulatory controls.
Your skills and experiences:
* Working knowledge and experience in performing security assessments, risk reviews, data privacy discussions, change reviews, exception reporting, service evaluation and supplier analysis.
* An appropriate understanding of IT infrastructure and how security principles are applied.
* Developing and reporting performance and risk metrics (e.g. KPIs/KRIs – Status Reporting and Dashboards for Senior Management).
* Experience of Cyber Security and UK Government based frameworks and/or regulations, such as NIST, ISO, SPF.
* Data security or security architecture and engineering experience.
* Ability to work within multifaceted team environment as well as independently, possessing organisational, time management and diplomacy skills.
Benefits:
As well as a competitive pension scheme, BAE also offers employee share plans, an extensive range of flexible discounted health, wellbeing & lifestyle benefits, including a green car scheme, private health plans and shopping discounts – you may also be eligible for an annual incentive.
Why BAE Systems:
As part of InfoSec as well as the wider Security team and BAE Systems as a whole, you will share in an inclusive culture that values diversity of thought, values integrity, rewards merit, and where you will be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible.
If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.
Security Clearance:
Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard.
In this particular case, the role of Classified Networks Deputy will require a higher level of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required, to allow for meaningful security vetting checks.
.