Product Security Engineer

Job Title: Product Security Engineer

Location: UK, Derby or Bristol

As a Product Security Engineer, you will be involved in creating future capabilities and technologies used across Rolls-Royce to secure products against evolving security threats (cyber, supply chain, etc.). You may participate at any stage of the project lifecycle, from concept development and design to integration, testing, and final production release.

This is an exciting opportunity to develop expertise in System Security Engineering and address complex technological challenges. You will be encouraged to enhance your skills and help grow R-R capabilities in this vital area.

Why Rolls-Royce?

Rolls-Royce is a renowned brand at the forefront of innovation, designing and servicing systems that provide critical power with safety and reliability. Recognized as a top employer in Engineering & Manufacturing for 2025, we foster a collaborative environment that promotes innovation, employee development, and inclusivity.

Responsibilities

• Contribute to the Secure Cyber Resilient Engineering (SCRE) of products throughout their lifecycle: architecture, requirements, design, build, test, production, operations, and support.
• Utilize Model Based Engineering tools in digital environments.
• Develop, implement, document, and maintain security policies, procedures, guidelines, tools, and training.
• Participate in security lifecycle activities, including regulatory certification/qualification (e.g., RMF, ED-202A / DO-326A, IEC 62443).
• Collaborate with government, customers, suppliers, and industry experts to meet system and program requirements.
• Provide feedback on system security and resilience best practices and disseminate knowledge across the business.
• Work across multiple functions such as software, hardware, maintenance, manufacturing, and corporate.

Qualifications

• Bachelor's degree in Electrical, Software, Controls, Systems, or Cybersecurity engineering with 2+ years of experience, or a Master's degree, or a PhD.
• Preferred: 1+ years in Product Security Engineering on real-time cyber-physical embedded systems, or 2+ years in related engineering roles.
• Knowledge of systems engineering on complex systems and embedded systems security.
• Experience or interest in cybersecurity, cyber threats, and related policies and standards (e.g., NIST SP, DO-326, IEC 62443).
• Excellent communication skills for influencing and explaining complex ideas to non-technical audiences.

What We Offer

Competitive salary, benefits including bonus, support assistance, discounts, and flexible hybrid working arrangements. Relocation assistance is available. We are committed to diversity and inclusion, welcoming applications from all backgrounds, including refugees. The closing date is Friday 15th August 2025.

#J-18808-Ljbffr