Principal Product Security Engineer
Bristol, United Kingdom
GBP 59K-63K (estimate) Senior-level Full Time
Tasks
- Approve trust zones and system boundaries
- Conduct supplier security assessments
- Conduct threat modelling and risk assessments
- Conduct vulnerability assessments and penetration testing
- Coordinate accreditation and authority to operate
- Define IAM and privileged access strategies
- Define factory acceptance testing security scope
- Define onboard cyber incident response requirements
- Define physical security requirements and access controls
- Define product security strategy
- Define security architecture IT and OT
- Define security network zoning and segregation
- Define security testing strategy
- Define supplier security requirements in contracts
- Develop product security management plan
- Embed secure-by-design principles
- Ensure compliance with Def Stan and NCSC guidance
- Establish secure configuration baselines
- Lead integrated project team security authority
- Manage security risk registers and treatment plans
- Oversee harbor and sea trial cyber validation
- Oversee secure integration of third party vendors
- Provide evidence for security case development
- Provide security inputs to design reviews
- Remediate identified vulnerabilities
- Support TEMPEST requirements
- Support lifecycle security planning
- Support monitoring and logging for forensics
- Validate SBOMs
Perks/Benefits
Skills/Tech-stack
Acceptance Testing | Access Management | Accreditation | Authority to Operate | Bill of Materials | By Design | Configuration baselines | Cyber Security | Cyber incident | Cyber incident response | Design review | Design review support | Factory acceptance testing | Forensic readiness | IT Security | Identity and Access Management | Identity and access | Incident Response | Information Assurance | Monitoring and Logging | Network Segmentation | Network zoning | OT Security | Penetration Testing | Privileged Access | Privileged Access Management | Review Support | Risk Assessment | Risk Management | Risk register | SBOM | Secure Configuration | Secure by Design | Secure configuration baselines | Secure integration | Security Architecture | Security Engineering | Security Risk | Security Risk Register | Security assurance | Software Bill of Materials | Supply Chain | Supply chain security | TEMPEST | Third Party | Third-Party Risk | Third-party risk management | Threat modeling | Trust zones | Vulnerability Assessment
Education
N/A
Related jobs
-
Research Engineer, Frontier Safety Mitigations, DeepMind GBP 225K-300KAI Coding Agents | AI coding | Adversarial Machine Learning | Anomaly Detection | Coding AgentsMid-level Full TimeLondon, UK10h ago
-
Cyber Security Engineer GBP 28K-28KAccess Management | Business Continuity | Cisco Meraki | Disaster Recovery | FirewallsAdditional allowances for first aiders | Annual health check | Celebration day | Digital GP consultations | Discounted gym membershipEntry-level Full TimeTring, United Kingdom1d ago
-
Senior Security Engineer GBP 70K-90KAPI Integration | Access Management | Application Security | Architecture Review | AzureCertification support | Conference attendance | Training and certification supportSenior-level Full TimeLondon1d ago
-
Security Engineer, Offensive Security GBP 42K-55KAutomation | Best practices | Burp Suite | DNS | HTTPMid-level Full TimeMansfield, Nottingham1d ago
-
Information Security Engineer GBP 38K-42KABAC | Access Management | Cybersecurity | IAM auditing | Identity and Access ManagementEmployee Sharesave Scheme | Family-friendly policies | Paid time off | Pension scheme | Training and developmentMid-level Full TimeCoventry, England, GB1d ago
-
Senior Cloud Data Security Engineer GBP 70K-80KAWS | Access Control | Access Management | Ansible | Azure25 days annual leave | Healthcare | Pension | Sharesave schemeSenior-level Full TimeNottingham, England, United Kingdom2d ago
-
Senior-level Full TimeBirmingham, United Kingdom2d ago
-
Product Security & Software Development Engineer GBP 47K-61KBy Design | GE iFIX | HMI | ICS OT | ICS/OT securityMid-level Full TimeEastleigh, United Kingdom2d ago
-
Cyber Security Engineer GBP 50K-50KAWS | Active Directory | Artificial Intelligence | Azure | Azure Active DirectoryAnnual leave | Company bonus scheme | Discounted health assessments | Employee assistance programme | Enhanced family leaveEntry-level Full TimeWarrington, England, United Kingdom2d ago
-
Information Security Engineer - UK Based GBP 48K-60KAudit preparation | Compliance | EDR | Incident Response | Information securityMid-level Full TimeYork, United Kingdom, Hybrid R3d ago
-
Junior Product Security Engineer GBP 45K-50KAPI Security | AWS | Application Security | CI/CD | DASTDental insurance | EV scheme | Extra festive time off | Family-friendly benefits | Hybrid work modelEntry-level Full TimeLondon R3d ago
-
DevSecOps Engineer GBP 70K-90KAWS | Azure DevOps | Bash | Bitbucket Pipelines | CI/CDAnnual leave | Bank holidays | Company pension contribution | Cycle to work scheme | Dental insuranceSenior-level Full TimeBristol, United Kingdom3d ago
-
Cyber Security Incident Responder GBP 58K-61KAttacker tactics | Elastic Stack | Incident Response | Kibana | Log AnalysisAnnual paid time off | Company pension | Cycle to work scheme | Dental insurance | EV schemeSenior-level Full TimeBristol, United Kingdom3d ago
-
Product Security Engineer GBP 61K-75KC# | C++ | CI/CD | Code review | GitAnnual leave | Bank holidays | Company pension contribution | Cycle 2 Work | Dental insuranceSenior-level Full TimeBristol, United Kingdom3d ago
-
Cyber Security Specialist - eCommerce Security GBP 24K-24KASVS | Application Security | Azure | Bug Bounty | CI/CDColleague discount | Company pension match | Employee assistance helpline | Hybrid working | Parental leaveSenior-level Full TimeAsda House, United Kingdom3d ago
-
Senior Cyber Security & Network Analyst GBP 53K-65KAruba | Cisco Nexus | Data encryption | Detection and Response | Disaster RecoveryCar schemes | Employee assistance program | Employee wellbeing initiatives | Eye Tests | Flexible working schemeSenior-level Full TimeEpsom, England, United Kingdom3d ago
-
Product Cyber Resilience Manager GBP 47K-60KAgile | Cybersecurity Capability Maturity Model CMMC | Cybersecurity Framework | Data Loss Prevention | Data lossAdditional flexi days | Bonus scheme | Dental coverage | Employee networks | Financial adviceMid-level Full TimeGB - Edinburgh, United Kingdom3d ago
-
Ansible | Certificates | Chef | Cloud Architecture | DevSecOpsNon-standard work hours | On-call rotationMid-level Full TimeLondon, UK6d ago
-
Cyber Security Specialist GBP 33K-36KActive Directory | Azure Active Directory | Cyber Security | Data Loss Prevention | Data lossAnnual leave | Blue Light Card discounts | Free onsite parking | Generous pension | Learning and development programmesEntry-level Full TimePortsmouth, Hampshire, United Kingdom6d ago
-
Application Security Engineer GBP 89K-120KApplication Security | Application Security Testing | CodeQL | Dynamic Application Security | Dynamic Application Security TestingHybrid workSenior-level Full TimeLondon, United Kingdom6d ago
-
Senior Cyber Security Splunk SME GBP 65K-75KAccess Management | Anomaly Detection | Correlation Search | Enterprise Security | Identity and Access ManagementCareer development | Mentoring opportunities | UK work authorization supportSenior-level Full TimeLondon, UK6d ago
-
Security Engineer GBP 64K-80KAI Security | AI security analytics | Automation | Compliance Monitoring | DevSecOpsCritical illness cover | Dental insurance | Employee assistance programme | External training access | Family leaveMid-level Full TimeYork, UK6d ago
-
AWS | Access Management | Automated remediation | Automated testing | AzureAnnual leave | Clear career paths | Flexible working options | Healthcare and dental cover | Internal mobilityMid-level Full TimeBelfast 10 Mays Meadow, United Kingdom R6d ago
-
API Security | AWS | Access Management | Agile methodology | AuthenticationAccess to learning platforms | Annual leave | Flexible working options | Healthcare and dental cover | L and D opportunitiesMid-level Full TimeBelfast 10 Mays Meadow, United Kingdom R6d ago
-
Detection Engineer GBP 35K-35KAI/ML | Azure | Cybersecurity | DLP | Data AnalysisCycle to work scheme | Employee assistance program | Employee referral bonus | Enhanced parental leave | Flexible work arrangementsMid-level Full TimeLondon, England, United Kingdom6d ago