Salary: £33,000 - 67,000 per year Requirements: Demonstrable experience of applying security principles within an agile delivery framework. Evidential experience as subject matter expert in the evaluation and implementation of technical security products and solutions for Public or Private sector organisations. Evidential experience in the identification, assessment and management of technical security risks, developing risk mitigation strategies, and tracking residual risk throughout the risk lifecycle. Demonstrable experience of managing assurance and/or compliance activities associated with a defined security standard (ISO 27001, Def-Stan 05-138, NIST SP 800, NIST CSF). Experience developing security assurance frameworks and governance models. Experience in performing formal risk assessments and production of security reporting artefacts within both on-premises and cloud-based environments. Able to effectively communicate highly technical security concepts, implementations, and issues, both verbally and in writing to management, clients and staff at all levels. Able to interpret detailed system design documentation, identifying potential security risks and recommend mitigations containing levels of security appropriate to the associated risk levels. In-depth experience of technical security issues and remediation activities across a range of system and application platforms, including cloud-based and on-premises. Current Cloud Security Qualification, e.g. CCSK, CCSP is desirable. Info. Security Qualification: MSc (InfoSec)/CISSP/CISM or similar certifications. This role will require SC Clearance; residency requirements apply. Responsibilities: Support Thales UK in ensuring all IS/IT technical security measures are implemented, enhanced and developed as necessary. Provide a central Point of Contact for all IS/IT technical security matters, supporting delivery teams throughout project lifecycles. Conduct security reviews of internal/external platform related changes, managing security risks, impacts, and mitigations appropriately. Provide security guidance around the secure deployment and usage of Thales adopted public cloud infrastructure and/or SaaS services (e.g., Azure). Ensure compliance with government policies and other applicable frameworks for Thales on-premises and cloud environments. Create, maintain, and review all IS/IT technical security documentation, policy, and procedures. Report, investigate, and analyze security incidents and potential breaches within classified environments. Develop security requirements, epics, and stories, alongside guidance for squads to include data protection in their initiatives. Collaborate with team members to ensure proposed solutions provide the required level of security assurance. Coordinate the implementation of technical risk and compliance assessments, recommending remedial actions when necessary. Provide assurance for successful delivery of Code of Connections (CoCos) and associated documentation. Engage in continuous learning and development, supporting other staff in their growth. Technologies: Azure Cloud Support Security AWS IaaS LESS Network Office 365 Oracle PaaS More: At Thales, we are a global leader in aerospace, transportation, defence, security and space, committed to creating a safer and more secure world. We offer a competitive salary and benefits package, including a performance-related bonus, hybrid working options, a pension scheme, 28 days of annual leave plus bank holidays, life cover, a 24/7 Employee Assistance Program, and discounts on gym memberships and major brands. Located in Crawley and Doncaster, we provide an environment where innovative minds come together to learn and thrive. We actively encourage diversity and provide reasonable adjustments throughout the recruitment process. last updated 13 week of 2026