Security Engineer

21% pension and benefits
28 May 2021
24 Jun 2021
Contract Type
Full Time
Are you fascinated by cutting-edge weapon and vehicle technology and excited by the opportunity to work first-hand with weapons systems on military platforms?
DE&S has exciting opportunities for Security Engineers, within the Weapons and Integrated Battlespace Operating Centres at MOD Abbey Wood. One opportunity is within Team Hersa, delivering state-of-the-art weapons, known as Directed Energy Weapons; the other opportunity is within the wider Weapons Engineering team or Future Capability Group, delivering remote and autonomous vehicles.
You will become the technical authority to enable the team to deliver equipment that is resilient to growing cyber equipment threats, now and in the future, for this emerging technology area. The roles cover all areas of information security, cyber, and information assurance, across Land, Sea and Air areas of the business.
This is a Professional Engineer role, managing the delivery of security requirements and associated tasks through all phases of the acquisition lifecycle. You will be required to develop and manage the security case at a project level, to protect assets through-life, ensuring that capability remains operational. A key aspect of the work is to identify and manage the security risks associated with projects during any phase of the acquisition life cycle. You will be influential in demonstrating your knowledge and experience with security in relation to engineering projects.
This role will encompass elements of planning and performance reporting within your Operating Centre. As a result, you will enhance your skills and subject matter knowledge to help DE&S ensure that the Armed Forces can operate in the most demanding environments.
If you have a talent for communicating, influencing and embracing change, this could be the role for you.
Please be advised that due to the secure nature of this work, these roles are reserved for sole UK nationals only.
As a Security Engineer with DE&S, your responsibilities will include, but not be limited to, the following:
* Act as the technical authority within the team on cyber and security, applying standard security techniques and architectures to mitigate security risks
* Understand the operational environment of the equipment and the cyber security risks that this presents, identifying threats, vulnerabilities and mitigations
* Lead the development of security artefacts including risk management document accreditation sets and produce system security cases as required
* Assess system changes (technology or process) for potential cyber safety risks and propose effective mitigations
* Balance cyber security risk against the cost of countermeasure, other areas of system performance and operational effectiveness
* Provide advice on the residual cyber security risk associated with User Experimentation, entry into service, and through life, to customers and users, supporting the development of any resulting Risk Balance Cases as a technical authority
* Lead on the development of new processes, where required, to enable the MOD to make the most of emerging technology, understanding the changing threat environment
* Assess Industry-delivered equipment/system Security Cases and Security Case Reports
* Create trials security instructions and security operating procedures
* Coordinate project Security Working Groups and Security Panels
What you will be assessed against
To be successful with your application, you must demonstrate that you meet the following essential criteria:
* You will have engineering experience in a relevant field such as security, networking or electronics environments
* You will have the ability to communicate well with both technical and non-technical customers
* You will demonstrate some understanding of data security concepts (or similar areas)
* You will hold a minimum of Level 4 (e.g. HNC) qualification in an engineering related discipline or will demonstrate equivalent relevant experience
It would benefit your application if you are able to demonstrate the following desirable criteria:
* Delivery in a cyber security or information assurance role, ideally producing key artefacts
* Experience of working in a secure supply chain and/or familiarity working with sensitive information
In addition to the responsibilities above, the following technical competencies and behaviours will be assessed at interview:
* Technical Requirements, Evaluation & Acceptance (Supervised Practitioner)
* Technical Risk Management (Supervised Practitioner)
* Making effective decisions
* Seeing the big picture
The closing date for applications is Sunday 6th June 2021