Security Risk Engineer

Can you develop a hands-on risk-based set of cybersecurity requirements for systems or subsystems?

We have an open headcount for this position with centers on offer spanning up and down the country (Frimley, Bristol, Portsmouth, Barrow, Brough, and Weymouth). Historically, those candidates who have performed well either have a current background in the forces or have transitioned into a commercial setting after leaving.

My client is a British Multinational defense organization, looking to bolster their Engineering Delivery Team with a candidate who will be proficient in running hands-on risk assessments in line with industry good practice (ISO 27001, NIST, JSP 440). You’ll also lead the development of risk-based cybersecurity requirements and provide essential technical guidance. Your responsibilities will include conducting in-depth cyber security analysis, creating threat taxonomies, and designing and implementing security architectures and risk mitigations. You’ll also play a crucial role in developing test plans and schedules to ensure comprehensive Cybersecurity testing. Additionally, you’ll support engineering reviews and design assurance activities to maintain the highest security standards.

Key Details:

• Hybrid: 3 days on-site, 2 days WFH
• SC clearance required (Currently held or able to achieve)
• Very hands-on
• Security baseline or engineering background (lifecycle phased approach)

If this sounds like you, don’t hesitate to reach out, and let’s have a conversation about this exciting opportunity!