We are working recruiting for an experienced Security By Design Consultant to support a major customer-facing aviation programme delivering one of the companys core products to an existing customer. Working as part of a specialist Cyber & Information Security team, you will support the delivery of secure engineering solutions across the full engineering lifecycle, from requirements through to in-service support and maintenance.
Interested in learning more about this job Scroll down and find out what skills, experience and educational qualifications are needed.
Key Responsibilities
* Support cyber and information security delivery across the engineering lifecycle
* Translate customer requirements into actionable security management plans and deliverables
* Conduct cyber and information security risk assessments and threat analysis
* Manage and escalate technical and delivery risks
* Support Security Working Groups and customer security workstreams
* Work closely with engineers, architects and developers to deliver secure-by-design solutions
* Deliver work packages to agreed time, cost and quality targets
Required Experience & Skills
* Experience in a similar Defence-related cyber security role
* Strong experience in secure software design and high integrity systems
* Knowledge of MOD Secure by Design processes (ISN2023/09)
* Experience with NIST SP 800-30, 37, 53 and supply chain risk management (NIST 800-161)
* Experience with Def Stan 05-138 / 05-139 and aviation security standards including RTCA DO-326A/B
* Proven experience in threat modelling, vulnerability analysis and security risk assessment
* Ability to work independently and communicate effectively with customers and stakeholders
Qualifications
* Degree in Cyber Security, Systems Engineering, Software Engineering or comparable experience
* Two recognised cyber security certifications such as CISSP, CISM, CASP/SecurityX or ChCSP
Desirable
* Knowledge of engineering lifecycle gate reviews
* Experience with Crypto technologies, COMSEC and MOD/NCSC standards
* Knowledge of ARP4754A / ARP4761
The successful candidate will either already have active SC clearance or will be able to secure this quickly as this is required before a start date can be confirmed.
Keywords: Cyber Security Consultant, Secure by Design, Defence Cyber Security, Aviation Security, CISSP, CISM, NIST, MOD, Security Architect, Information Security Consultant, RTCA DO-326A, Def Stan, Threat Modelling, Risk Assessment. xsngvjr
Meridian Business Support is a recruitment specialist acting on behalf of our client as an Employment Business for this vacancy.