Vacancy Reference: CLA- 368 Position: Full-time Location: Salisbury, Wiltshire, UK Salary: £30,000- £40,000 At Callen-Lenz, we are expanding the limits of what is possible. We specialise in manned and unmanned aircraft operations and technology, and having recently received investment into the business we are going through a period of rapid growth and development and are looking for key roles to assist with these changes. Callen-Lenz offers innovative and customer focused UAS solutions through our 4 key business strands; technical services, products, platforms and operational services. We are looking for individuals to help drive forward our expansion, placing you at forefront of UAS development in the UK. Our Values Teamwork Commitment Initiative Creativity Agility Integrity Enjoyment Why Work for Us Based in the heart of rural Wiltshire, close to the Historic city of Salisbury you will join our rapidly growing, friendly and multi-disciplined team, working on a range of diverse and interesting projects, leading the way in this exciting field and witnessing the full lifecycle of our products. The Callen-Lenz team are passionate about what we do, and we are searching for individuals to grow with us as we expand into the aerospace industry. Our benefits include: 25 days annual leave per year (plus bank holidays) Buy/Sell holiday policy up to 5 days either way Pension Scheme via Royal London Company contributed Share Incentive Plan. Green Car Scheme Life assurance scheme (6x basic salary) Income protection policy (75% of basic salary) Private Health Insurance via Vitality Private Dental insurance via Bupa Enhanced Maternity and paternity 1 Professional membership reimbursed per year 1 paid volunteering day per year Access to an independent financial advisor year round Training & development opportunities About The Role As an IT Security Analyst, you will act as an advisor working with both the wider IT team and security team alike to ensure we have strong and deliverable secure IT practices in all areas of the business. You will advise on and propose strategy for the right and relevant solutions. You will also continue to horizon scan for future solutions and innovation to ensure we are protecting our business and remain agile for future development opportunities. Responsibilities Assist in the implementation and management of cyber and information security controls. Conduct regular security assessments and audits to identify vulnerabilities and recommend appropriate countermeasures. Provide expert support and guidance to internal teams in addressing security issues while ensuring compliance with applicable security standards and regulations. Assist with developing and maintaining cyber and information security strategies, ensuring alignment with business objectives and industry best practices. Implement and operate processes and improvement programs pertaining to our overall operational information and cyber security, including incident management; vulnerability discovery, tracking and resolution. Own and manage Vulnerability management and scanning tools. Operate our Security incident management process including configuration of intrusion detection & prevention systems, escalation and alerting, remedial actions management and incident resolutions. Assist in delivering IT security training across the company. Work with the team, to provide IT security & information assurance activities, including system accreditation, operational activities, and project oversight. Conduct threat/vulnerability/impact analysis, influencing security policies. Perform Other IT Related Duties As Required. Health & Safety (Employee) Demonstrate in daily activities a commitment to health and safety in the workplace by always ensuring tasks are performed in the safest possible manner Report all hazards and incidents that the individual is party to, or observes, in the correct manner. When required or directed, participate in any health and safety training. Qualifications Skills and Experience Bachelor's or Master's degree in Computer Science, Cybersecurity or Information Technology or equivalent experience is desired but not essential. Essential: Experience in a similar role covering areas such as: data protection/information security, risk and issue management, governance processes, assurance and reporting. Knowledge and experience of applications such as Microsoft Intune, Microsoft Defender, Azure Sentinel and Azure Purview Strong understanding of security principles, technologies, project management, change management and methods. Knowledge of cloud security best practices Strong organisational and administrative skills with a keen eye to detail Excellent communication skills, both written and verbal Proficient in Microsoft Word, Excel, and Outlook Results driven, can work under pressure in a fast-paced environment to meet tight deadlines Able to maintain a high level of confidentiality Desirable: An understanding of UK Government and Ministry of Defence IT Security standards for the handling and storage of classified information. Any exposure to Secure by Design Framework would be beneficial Knowledge of HMG security policy and framework An understanding of security policy and requirements (DefCon 658, Def Stan 05-138) Experience of reviewing, writing, and completing RMADS. procedures, often including frameworks like OJEU (Official Journal of the European Union). Personal Attributes Must be a British Citizen or have an existing right to work in the UK Ability to commit to occasional national and international travel A full valid UK driving license Ability to hold Security Clearance – 5 years residence in the UK Please click here to read our privacy notice Callen-Lenz is an equal opportunities employer, committed to building an inclusive working environment. We welcome applications from all suitably qualified persons regardless of their race, sex, disability, religion/belief, sexual orientation, or age. It is essential that the successful candidate must, by the start of their employment have permission to work in the UK. Proof of identity and eligibility to work in the UK will be required prior to commencement of employment. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks