Head of Product Security Capability (UK)
Leonardo Newcastle Upon Tyne, England, United Kingdom
Overview
The Design Integrity function is recruiting for a Head of Product Security Capability (UK). In the Electronics division (LEUK), the role coordinates product cyber resilience activities across technical and business functions to ensure continued product compliance with internal and external cyber security standards. You will work with the senior leadership team within Product Security across all lines of business and have responsibility for the Electronics UK Product Security and Information Management System, security tools and processes and their effectiveness. You will also lead the Product Compliance Team Product Security Working Group. The role is hybrid and can be based at Edinburgh, Luton, Basildon, Southampton, Newcastle, Bristol or Lincoln. Internal applicants: the job title for this role is Product Cyber Resilience Officer.
Job Description
The role coordinates product cyber resilience activities across technical and business functions to ensure continued product compliance with internal and external cyber security standards. You will work with the senior leadership team within Product Security across all lines of business and oversee the Electronics UK Product Security and Information Management System, security tools and processes and their effectiveness. You will also lead the Product Compliance Team Product Security Working Group. Hybrid working locations: Edinburgh, Luton, Basildon, Southampton, Newcastle, Bristol, Lincoln. Internal applicants: job title is Product Cyber Resilience Officer.
Your Responsibilities
* Partner with technical and business functions across LEUK, including Engineering, Manufacturing, Customer Support, Physical Security and Information Technology to ensure continued compliance with internal and external cyber security standards specified by national security authorities or by international bodies and with customer security requirements.
* Maintain the Electronics Product Security and Information Management System, security tools and processes.
* Liaise with external Security Accreditors and Security Assurance Coordinators in support of security accreditation.
* Regularly refresh knowledge of security legislation in the UK, EU and relevant markets for LEUK.
* Advise internal stakeholders to promote security culture and work with security teams to ensure secure working practices are adhered to.
* Develop and deliver training courses and present on Product Security and Information Assurance matters.
* Perform audits of internal and external subcontract teams to assure that security and Information Assurance requirements are achieved.
What you’ll bring
* Hands-on experience developing a robust security risk management system for complex products and high integrity electronic systems in line with customer, regulatory and legislative expectations.
* Familiarity with current legislation (e.g., IPA, DPA, Official Secrets Act).
* Registration with NCSC Certified Professional at lead level, or equivalent NCSC-recognised qualification.
* Knowledge of UK/NATO Information Assurance standards, procedures & systems, including HMG Security Policy Framework, ISO security standards, DO326A.
* Familiarity with incident investigation processes and how to implement them.
* Experience with NCSC and Common Criteria security evaluation techniques and requirements up to High Grade.
* Knowledge of crypto technologies, Key Management Systems and practical COMSEC implementations.
* Background in design implementation of high integrity complex electronics (e.g., Software design to DO178C, Complex Electronics hardware to DO254).
* Understanding of regulatory requirements for products (e.g., MAA DAOS, ARP4754) and how to meet them.
* Understanding of operations for products to identify functional security risks and mitigations.
* Knowledge of advisory boards within the UK Government or NATO for security.
This is not an exhaustive list; we welcome applicants who may not have experience in all areas. The most important attribute is a good attitude and willingness to learn.
Security Clearance
This role is subject to pre-employment screening in line with the UK Government’s Baseline Personnel Security Standard (BPSS). An additional range of Personnel Security Controls, referred to as National Security Vetting (NSV), may apply, including eligibility for The Security Check (SC) or Developed Vetting (DV). For more information visit the Leonardo security and vetting page.
Why join us
Leonardo values its people and offers a comprehensive, company-funded benefits package supporting wellbeing, career development, and work–life balance. Benefits include:
* Time to Recharge: up to 12 additional flexi-days per year.
* Secure your Future: pension scheme with up to 15% employer contribution.
* Your Wellbeing Matters: access to mental health support, financial advice, and employee-led networks (Enable, Pride, Equalise, Armed Forces, Carers, Wellbeing and Ethnicity).
* Rewarding Performance: bonus scheme for employees at management level and below.
* Never Stop Learning: access to 4,000+ online courses via Coursera and LinkedIn Learning.
* Refer a Friend: financial reward through our referral programme.
* Tailored Perks: flexible benefits including private healthcare, dental, family cover, discounts, gym memberships, and more.
* Flexible Working: hybrid options; discuss part-time possibilities if needed.
For a full list of our company benefits, please visit our website.
Leonardo is a global leader in Aerospace, Defence, and Security with 53,000+ employees worldwide, including 8,500 across 9 UK sites. We are committed to an inclusive, accessible, and welcoming workplace. If you have accessibility requirements, let us know. Be part of something bigger — apply now!
Location and job type
Primary Location: GB - Bristol - Others
Additional Locations: GB - Basildon, Edinburgh, Lincoln, Luton (Cap. Green 300), Newcastle, Southampton
Contract Type: Permanent
Hybrid Working: Hybrid
#J-18808-Ljbffr