Chief of Security

If you’d like to be considered for this opportunity we encourage you to apply promptly to avoid disappointment as if applications are high the role will close before the closing date given.

An exciting opportunity to join AWE as our new Chief of Security.

This is a critical role for AWE.  We are looking for someone to work closely with our Executive Directors and Leadership team to develop, deliver and enable an effective business strategy to assess and mitigate risk, manage incidents, maintain continuity of operations, and safeguard the organisation.

The successful candidate will be responsible for the following:

Key Accountabilities:

• Provide strategic vision and direction in the security aspects of AWE’s plans and operations.
• Build and maintain strong connections between Security and other functions, departments and teams within AWE.
• Deliver overall security effect for AWE, as required by regulations, ensuring that security is a business enabler.
• Lead the engagement with DNO, Defence Nuclear Security Regulator and other stakeholders.
• Ensure that Security personnel, capabilities, procedures and training are co-ordinated to achieve the overall security effect.
• Lead physical, personnel and information security to deliver outcomes greater than the sum of the whole.
• Protect and lead on AWE assets through directing assessments and management of security risks, planning security operations and ensuring effective delivery of new capabilities.
• Interpret and advise on the application of MOD security policies, whilst maintaining current and future threats, whilst remaining compliant.
• Plan for and prepare appropriate and effective security controls to allow AWE to manage future priorities including the Hub and RW, and to respond to any changes in operational tempo.
• Build a strong, capable, confident and professionally qualified Security Team across all disciplines.
• Oversea the role of Chief Information Security Officer (CISO), ensuring that Cyber and IT security policies, plans, controls and reporting are included in Information Services function forward plans, governance and procedures.
• Ensuring AWE has effective Cyber and IT Security policy, controls, monitoring and responses.

Other key accountabilities will include:

• Work with business leaders and staff throughout AWE to ensure that security teams understand business processes and priorities.  Respond to these with both collective and bespoke security measures as appropriate.
• Provide leadership and direction to staff working in security fields and ensure non-security staff have access to clear, helpful guidance.
• Direct staff in identifying, developing, implementing, and maintaining security processes, practices, and policies throughout AWE to reduce risks, respond to incidents, and limit exposure.
• Oversee the balance between security and business efficiency ensuring they remain proportionate.
• Liaise and co-ordinate with security authorities including MDP, DI, DNO, NCSC and UKSV.
• Manage risk through threat and vulnerability analysis, planning and delivery of mitigations, and monitoring of controls.
• Deliver improvements in AWE Supply Chain Risk Management.
• Design appropriate metrics and analysis, reporting as required to Executive Board, AWE ML and other stakeholders.
• Oversee the role of AWE Chief Information Security Officer (CISO).
• Lead the implementation of Cyber and IT security responses to current and emerging threats ensuring that levels of assurance are maintained whilst minimising the impact on business operations.
• Lead the provision and maintenance of Cyber defence, monitoring and information assurance services.
• The Company may require you to fulfil any other reasonable duties aligned to your position from time to time in line with business needs.

Experience required:

• Background in planning and operational delivery of security measures across physical, personnel and information domains.
• Security policies and operations within a Defence context.
• Technical security measures and delivery of cyber security.
• Policy development and approaches to risk in an operational environment.
• Managing security events and incidents.
• Previous experience at a senior level of managing security within a complex environment.  

Qualifications and/or professional memberships:

• Nationally recognised senior practitioner level certification from a security authority.
• Certified Information Systems Security Professional (CISSP).
• NCSC Cyber Certified Professional (CCP) at Lead or Senior level.

Location: Reading / Basingstoke area with free onsite parking.

Package: Competitive leadership salary depending on experience plus various other benefits including a 9-day working fortnight, generous holiday allowance, performance related bonus & an additional flexible benefit scheme.

All candidates must be willing and able to obtain and maintain the necessary DV security clearance for the role.

Closing date: 14th March 2025.

#LI-SN

#LI-Hybrid

Next steps:

Everyone who works at AWE brings unique skills and perspectives to the table. We recognise that great people don’t always ‘tick every box’. That’s why we focus on your potential, your fit with our values, your transferable skills as well as your experience. Even if you don’t meet every point above, but you feel that this role and AWE are a great fit for you, please go ahead and apply, we’d love to receive your application.

Important things you need to know:

• We encourage you to apply promptly to avoid disappointment if applications are high and the role therefore closes.
• You will need to obtain and maintain the necessary security clearance for the role. This will be funded by AWE. The nature of our work does mean you need to be a British Citizen who has been resident in the UK for the past 5 years in order to apply for SC clearance and 10 years for DV. 
• We want you to feel comfortable and able to shine during our recruitment process. Please let us know on your application form if you need any adjustments/accommodations during the process.
• Our interviews typically take place over Teams and for most roles are a 1 stage process.

Our ambition is to create workplaces where we recognise and celebrate differences, encourage diverse contributions and our employees feel able to be themselves at work. We strive to create a genuine culture of openness and inclusion and encourage diverse applicants. Any inclusion information you provide will be stored in accordance with GDPR and kept separate from your application form and CV, and the information will not be shared with anyone involved in interviewing or making hiring decisions.

Please note that you must be a British Citizen to apply for a role with us.