Description: |
Vacancy:Information Security EngineerStatus:PermanentRef:A348Area:HampshirePosition Concept:The Information Security (Infosec) engineer will provide specialist support as an integral member of engineering teamsresponsible for design and development of our customers operational systems.The Infosec Engineer will have a clear understanding of security concepts, standards, techniques and the processes forevaluation, certification and Accreditation.The Infosec Engineer will be a member of the Specialist Engineering Department, under the direction of the SystemSecurity Lead engineer.Duties / Responsibilities:The Infosec Engineer is generally responsible for ensuring that the system security is properly addressed at all stagesof the system development lifecycle: from requirements definition through to operational service. Specific tasks andresponsibilities include:Understanding and clarifying customers security needsDefining high level system security requirementsDefining plans and managing the process for security implementation, evaluation, certification and Accreditation.Performing Security Risk Analysis and ManagementDefine the system security architectureAssessment and selection of off the Shelf security componentsDefining and managing security relate programme risksProducing documentation required for evaluation, certification and AccreditationProducing and delivering formal presentations to CustomersQualifications/Experience Required:The candidate should have the following qualifications and experience:Bachelors degree from an accredited college in a related discipline, or equivalent experience/combined education, with 5years of professional experience; or 3 years of professional experience with a related Masters degree; or no experiencerequired with a related PhD or JD.A minimum of two years experience in a systems engineering/integration environmentA minimum of one years experience in implementing security in MoD/HMG environment.A working knowledge of security standards (e.g. ISO/IEC 17799, JSP440, HMG IS1-5)Experience in producing technical specifications, reports and plans.Knowledge and experience of the legal, statutory, and regulatory aspects of securityKnowledge of security risk management concepts and techniquesKnowledge and experience of implementing technical/functional security.Knowledge and experience of implementing operations, physical and environmental security.Experience in presenting to both Customers and suppliers.Experience of developing business continuity and disaster recovery plansThis position is only open to candidates who are eligible or who currently hold a valid work permit for the UK. You mustalso be willing |
