Cyber Security Principal Consultant
Bristol, England, United Kingdom
QinetiQ
Offering world-class scientific and technological knowledge, proven research capabilities and unique purpose-built facilities to provide global security and defence services and products.Package: Competitive Salary + Benefits
Role ID: SF17960
Are you ready to be part of the future? At QinetiQ, we’re not just imagining tomorrow we are creating it. From cutting-edge defence technology to ground-breaking innovations our mission is to empower and protect lives. Join us as a Principal Cyber Security Consultant at our Bristol site, where you will have the opportunity to work with cutting-edge technology in partnership with some of the most brilliant minds.
The Role
As a Principal Cyber Security Consultant, you will ensure that the Information and Communication Services (ICS) delivered are done so in accordance with MOD Secure by Design (SbD) approaches and assured in accordance with the relevant standards and policies, both national and international.
Day-to-day, you’ll be accountable for all aspects of information security and risk across the programme, overseeing the physical, technical, procedural, and personnel security matters for the programme and all delivered ICS in a structured and proactive manner.
Your responsibilities will include:
- Lead and refine the programme security strategy ensuring robust systems are in place
- Taking a holistic and through life approach to risk assessment and risk management
- Providing technical subject matter expertise, advice and guidance on security matters relating to Secure by Design (SbD), assurance, compliance, governance and secure operation of ICS to all elements of the Programme
- Defining and applying a programme MOD SbD approach that successfully supports the business outcomes
- Developing and implementing the appropriate operating model to ensure information security is embedded within all parts of the programme
- Planning, coordinating, and overseeing the production and review of all security related documentary artefacts, ensuring they align to the policy and rules (eg JSPs 440 and 604) and the programme’s strategy and approach. This includes: Technical Security Architecture, Cyber and Service Management Plans, Security Management Plans, Business Impact Assessments, Risk Assessments, Risk Management Plans, Security Operating Procedures, Codes of Connection and Security Delivery Plans
Essential experience of the Principal Cyber Security Consultant:
- Extensive understanding and experience of HMG security policies, NIST standards and emerging approaches to security assurance and risk management
- Detailed knowledge and understanding of relevant UK Government and Defence policies and standards, particularly JSPs 440 and 604 and DEFSTAN 05-0138 and 05-0139
- Strong experience with Security/Cyber Incident Management policies, processes, and procedures
- Strong understanding of UK Defence deployed network architectures, federations with coalition partners, and security enforcing gateways
- Strong critical thinking and analytical skills to solve problems and propose new ideas
- Knowledge of novel techniques for enforcement of security principles on heavily virtualised ICS, including: micro-segmentation, VPN, VDI, hardware encryption and information flow handling
Essential qualifications for the Principal Cyber Security Consultant: (One of the following)
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- ISO27005 Certification in ISMS Risk Management (CISRM)
We value difference and we don’t have a fixed idea when it comes to background or education, provided you can show the required level of experience and willingness to learn then we would like to hear from you.
This role is 37 hours per week based at our Bristol site. Hybrid working patterns are available.
The QinetiQ facility in Bristol is part of the company’s broader operation focused on defence and technology innovation. The site houses a diverse team of engineers, scientists and technical professionals who bring expertise to various projects ensuring high-quality outcomes.
Why Join QinetiQ?
As we continue to grow into new markets around the world, there’s never been a more exciting time to join QinetiQ. The formula for success is our appetite for innovation and having the courage to take on a wide variety of complex challenges.
As a QinetiQ employee, you’ll experience a unique working environment where teams from different backgrounds, disciplines and experiences enjoy collaborating widely and openly as we undertake this exciting and rewarding journey. Through effective teamwork, and pulling together, you’ll get to experience what happens when we all share different perspectives, blend disciplines, and link technologies; constantly discovering new ways of solving complex problems in a diverse and inclusive environment where you can be authentic, feel valued and realise your full potential. Visit our website to read more about our diverse and inclusive workplace culture. www.qinetiq.com/en/careers/life-at-qinetiq
Our Benefits
- Matched contribution pension scheme, with life assurance
- Generous holiday allowance, with the option to purchase additional days
- Options to join Health Cash Plan, Private Medical Insurance and Dental Insurance
- Employee discount portal: Personal Accident Insurance, Travel Insurance, Restaurants, Cinema Tickets and much more
- We are proud to support the Armed Forces community by honouring the Armed Forces Covenant and maintaining our Gold Award standard in the Defence Employer Recognition Scheme
- Volunteering Opportunities - helping charities and local community
Our Recruitment Process:
We want to make sure that our recruitment process is as inclusive as possible and we aspire to bring out the best in our candidates by creating an environment where everyone feels valued, heard and supported. If you have a disability or health condition that may affect your performance in certain assessment types, please speak to your Recruiter about potential reasonable adjustments.
Many roles in QinetiQ are subject to national security vetting being completed, applicants who already hold the appropriate level of vetting may be able to transfer it upon appointment. A number of roles are also subject to additional restrictions, which means factors such as nationality or previous nationalities may affect the roles that you can be employed in.
Please note that all applicants for this role must be willing to go through DV Clearance.
UKSV National Security Vetting Solution: guidance for applicants - GOV.UK (www.gov.uk)
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISM CISSP Clearance Compliance Encryption Governance ICS ISMS ISO 27005 NIST Risk assessment Risk management Security strategy Strategy VPN
Perks/benefits: Competitive pay Equity / stock options Health care Insurance
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.