Job Description Information Assurance Specialist Full Time Derby Rolls-Royce offers an excellent opportunity for an Information Assurance Specialist to join our Cyber Security, Risk and Compliance team. In this role you will be providing Information Assurance through the application of policy, standards, and best practice to support the IT product teams. You will also be required to work with other IA specialists to ensure a common approach to cyber security issues is developed and documented. At Rolls-Royce, innovation is in our DNA. We pioneer integrated power and propulsion solutions across multiple markets. We embrace the power of data and technology, and we aim to be Digital First in everything we do. Why Rolls-Royce? Rolls-Royce is one of the most enduring and iconic brands in the world and has been at the forefront of innovation for over a century. We design, build and service systems that provide critical power to customers where safety and reliability are paramount. We are proud to be a force for progress, powering, protecting and connecting people everywhere. We want to ensure that the excellence and ingenuity that has shaped our history continues into our future, and we need people like you to come and join us on this journey. We’ll provide an environment of caring and belonging where you can be yourself. An inclusive, innovative culture that invests in you, gives you access to an incredible breadth and depth of opportunities where you can grow your career and make a difference. What we offer: We offer excellent development opportunities, a competitive salary, and exceptional benefits. These include bonus, employee support assistance and employee discounts. What you will be doing: Reporting into the Lead Information Assurance Specialist, your primary responsibilities will be to: Assist the team in developing and defining Information Security policies, standards, guidelines, and procedure to an agreed framework (ISO27000) Act as the Cyber Security representative on large projects and operate as part of “product” teams, providing advice, guidance, and approvals for the implementation of cyber security to agreed policies and standards Act as the Cyber Security representative on other supported initiatives such as University Technology Centres, Research Centres, Joint Ventures, and Supply Chain, providing advice, guidance and approvals for the implementation of cyber security to agreed policies and standards Review compliance to information security policies and standards, configuration assessment, adherence to legal and regulatory requirements and recommend appropriate action Provide authoritative advice and guidance and approval on the application and operation of all types of security controls including legislative or regulatory requirements Advise users on risk management and reduction and promote awareness in conjunction with the Global Security awareness programmes Identify, report and manage Cyber security risks and concessions Support any wider cyber security initiatives or projects as necessary Apply and maintain specific security controls as required by Rolls-Royce policy and local risk assessments to maintain confidentiality, integrity and availability of business information systems Who we’re looking for At Rolls-Royce we put safety first, do the right thing, keep it simple and make a difference. These principles form the behaviours that guide us and are an essential component of our assessment process. They are the fundamental qualities that we seek for all roles. For this role you will need to demonstrate understanding of the appliable health and safety standards and we are looking for someone who is/has: Good overall knowledge of information systems practices and applications. Thorough understanding of Rolls-Royce management processes and practical knowledge of the principles of information security Understands IT security compliance practices and acknowledges the need to maintain and practical and pragmatic approach to standards compliance Communicates well and has the skill to influence through persuasion in a formal context Broad knowledge of IT security demonstrated by attainment of appropriate qualifications Experience / awareness of cloud technologies and capabilities in an enterprise environment Willingness to learn and promote wider compliance requirements such as Product Safety, Data Privacy and Export Control We are an equal opportunities employer. We’re committed to developing a diverse workforce and an inclusive working environment. We believe that people from different backgrounds and cultures give us different perspectives. And the more perspectives we have, the more successful we’ll be. By building a culture of respect and appreciation, we give everyone who works here the opportunity to realise their full potential. We welcome applications from people with a refugee background. You can learn more about our global Inclusion strategy at Our people | Rolls-Royce Job Category Information Technology Posting Date 29 Apr 2025; 00:04 Posting End Date 13 May 2025