Social network you want to login/join with:
Fantastic challenges. Amazing opportunities.
GKN Aerospace is reimagining air travel: going further, faster and greener! Fuelled by great people whose expertise and creativity set the industry standards, we’re inspired to innovate and break boundaries. We’re proud to contribute to protecting democracies worldwide and are committed to sustainability, safeguarding our planet. With over 16,000 employees across 33 manufacturing sites in 12 countries, we serve over 90% of the world’s aircraft and engine manufacturers, achieving sales of £3.35 bn in 2023. There are no limits to where you can take your career.
Job Summary
The Cyber Security Officer interprets regulatory and contractual requirements, maps and assesses controls, and advises IT/OT and business teams on control implementation. Responsibilities include security risk management, reporting, policy lifecycle, training, governance, compliance, and third-party risk management. The role involves collaborating with stakeholders across departments such as IT, Legal, Compliance, and HR to ensure effective risk management aligned with company policies and requirements.
Job Responsibilities
Safety:
* Follow all HSE rules and regulations. Wear appropriate PPE as required.
Governance:
* Develop, implement, and maintain governance, risk, and compliance processes.
* Improve security framework, standards, and internal controls.
* Report findings, track status, and ensure corrective actions are completed.
* Support operational reporting, management communication, and governance committees.
* Lead continuous improvement initiatives to meet strategic goals.
* Maintain relationships with auditors, regulators, and compliance partners.
Risk and Compliance:
* Support risk identification, assessment, mitigation, and control monitoring.
* Gather information for auditors, regulators, and compliance partners.
* Develop tests to evaluate controls' design and effectiveness.
* Review test findings, identify weaknesses, and recommend remediation actions.
* Manage issues, risk acceptances, and corrective action programs.
* Create high-quality reports and communicate effectively.
* Support workforce security, culture, awareness, and training activities.
* Assist with US Defence certification, incident response, and liaising with authorities.
* Complete supplier questionnaires and conduct risk assessments.
GRC Systems Administration:
* Support GRC systems for Cyber Security and IT.
* Configure and develop GRC system services and improvements.
* Specialize in questionnaires, workflows, reports, and dashboards.
* Serve as a resource on GRC matters for teams.
Job Qualifications
Required Qualifications:
* Bachelor’s Degree in a technology-related field or equivalent experience.
* 3+ years of experience in security and compliance.
* Fluent in English (speaking and reading).
* US Citizenship or Green Card required for security clearance.
* Capable of obtaining and maintaining DoD SC Clearance or higher.
Additional Qualifications:
* Experience with cyber governance, risk, and compliance management.
* Experience writing policies and controls based on standards/frameworks.
* Knowledge of UK HMG/MOD security requirements, accreditation, and security solutions.
* Understanding of computer networking, system security, and risk management.
* Familiarity with cyber threats and vulnerabilities.
* Ability to work in highly regulated environments and handle ambiguity.
Preferred Qualifications:
* Experience coordinating third-party assessments.
* Knowledge of RMF, NIST standards, ISO 27001, and related security practices.
* Knowledge of aerospace regulations and export controls.
* Professional security certifications like CISSP, CISM, etc.
Join us for challenging opportunities and industry-leading training, shaping the future of aerospace innovation. We welcome diverse applicants and are committed to inclusion, offering accessible recruitment processes.
#J-18808-Ljbffr