National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

Lead Security Engineer [Apply in 3 Minutes]...

LHH
Luton
2 days ago
Create job alert

Job Description Key Responsibility Areas The
successful candidate will report to the Head of Engineering
Products and be responsible for providing security advice to
product development teams in a range areas including: - Production
of Security Managements Plans, work package descriptions and cost
estimates in support of product bids, services and proposals. -
Undertaking security risk assessments, risk mitigation plans,
mitigation gap analysis and preparation of security management
documentation for system Accreditation. - Defining product security
requirements, advising development teams on suitable implementation
standards and techniques and overseeing product development
activities. - Liaison with Security Accreditors and Security
Assurance Coordinators in support of security accreditation. -
Preparation of Protection Profiles, Security Targets and Evaluation
Management Plans, and liaison with NCSC and commercial evaluation
teams in support of evaluation activities. - Preparation of TEMPEST
Control Plans, advising development teams on appropriate
implementation techniques and liaising with TEMPEST test
facilities. - Advising development teams on suitable platform
lockdown and configurations, and supporting Penetration test
activities. Analysing penetration test results and preparation of
remedial action plans. - Prepare and implement through life support
and maintenance for product security including vulnerability and
patch management plans - Lead security incident management teams
during incident/crisis situations in conjunction with Head of
Product Security for EW/FCA - Review and maintain corporate product
security policies. - Deliver product security training to project
engineering teams. What we are looking for: Skills, Qualifications
& Knowledge Required - Experience in the development of
security solutions for a military &/or commercial products and
systems. - Graduate degree in relevant engineering, computing or
related scientific discipline, and/or evidence of further
professional study. - Registered NCSC certified professional at
senior level or above, or NCSC recognised qualification, e.g.
ISC2Certified Information System Security Professional. - Knowledge
of UK/NATO Information Assurance standards, procedures &
systems, including Government Functional Standard GovS 007:
Security, HMG IS1&2, ISO27000 series standards, NIST SP800
series standards, JSP440, JSP604, guidance material provided by
NCSC, CPNI and NIST. - Practical experience of producing Security
Accreditation documentation - Practical experience of NCSC and
Common Criteria security evaluation techniques. - Knowledge of
current crypto technologies and key management systems - Model Base
System Engineering (MBSE) knowledge - Understanding operating
systems, firmware and software security controls and how to apply
them. - Understanding of existing, current and emerging
technologies including cloud, virtualisation and web - Excellent
verbal & written communication skills. - Good team worker with
ability to influence and motivate. - Positive attitude and drive to
improve the business. - Ability to obtain SC clearance with UK-eyes
only caveat. - Enterprise Security Architectures (SABSA, MODAF).
Additional Information: Intrinsic Factors This is a desk-based role
using display screen equipment; working full time hours which can
often be in a demanding environment, with occasional travel
throughout the UK and abroad. The role allows for working from home
but there will be times you will be expected to attend site, for
face to face meetings and when working with sensitive material.
Security Clearance You must be eligible for full security
clearance. For more information and guidance please visit :
https://www.gov.uk/government/publications/united-kingdom-security-vetting-clearance-levels.
Desirable - DV Clearance. - Knowledge of Quantum Cryptography &
Quantum Key management. - Current threat intelligence awareness. -
Knowledge of NATO security policy, risk management and
Accreditation. - Understanding of the role of advisory boards
within the UK Government or NATO for security.

Related Jobs

View all jobs

Senior IT Security Officer

Apprentice Fire & Security Engineer - Stevenage and Milton Keynes

Senior Security Engineer

Senior Cyber Security Engineer

DevSecOps Engineer

IT Security Architect for Network & Cloud - Remote - Permanent

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

LinkedIn Profile Checklist for Cybersecurity Jobs: 10 Tweaks to Supercharge Recruiter Engagement

In the ever-evolving realm of cybersecurity, having a LinkedIn profile that reflects both your technical prowess and threat-hunting acumen is vital. Organisations are on the lookout for professionals skilled in penetration testing, incident response, security architecture and compliance. With hiring managers scanning dozens of profiles daily, your profile needs to not just rank in searches but convey your expertise in safeguarding digital assets. This step-by-step LinkedIn for cybersecurity jobs checklist offers ten practical tweaks to supercharge recruiter engagement. Whether you’re an aspiring security analyst, a seasoned penetration tester or a chief information security officer aiming for board-level roles, these actionable optimisations will sharpen your LinkedIn presence and position you as a top infosec candidate.

Education

Part-Time Study Routes That Lead to Cyber Security Jobs: Evening Courses, Bootcamps & Online Masters

The frequency and sophistication of cyber-attacks have exploded in recent years, making cyber security one of the UK’s most in-demand skill sets. From safeguarding NHS patient data to defending FTSE 100 financial systems, organisations across sectors require qualified professionals—penetration testers, security analysts, incident responders and security architects—to protect critical infrastructure. Yet many professionals cannot pause their careers to upskill full time. Fortunately, an ecosystem of part-time learning pathways—evening courses, intensive bootcamps and flexible online master’s programmes—enables you to learn cyber security while working. This comprehensive guide explores every route: foundational CPD, immersive bootcamps, accredited online MScs, plus funding options, planning strategies and a real-world case study. Whether you’re an IT support technician, a software developer or a compliance manager aiming to pivot into security, you’ll discover how to build expertise at your own pace.

Careers

The Ultimate Assessment-Centre Survival Guide for Cyber Security Jobs in the UK

Assessment centres for cyber security positions in the UK are designed to mirror real-world threat landscapes and test both your technical acumen and soft skills under pressure. Across multiple stages—psychometric assessments, penetration testing exercises, incident response group tasks, case studies, interviews and even informal networking breaks—employers assess your ability to identify vulnerabilities, collaborate in high-stakes scenarios and communicate effectively. This guide walks you through each component, equipping you to stand out and secure your next role in cyber defence.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.