Senior Security Consultant in Edinburgh

Leonardo UK is seeking a Senior Consultant to join the Cyber & Security Solutions Division team. This role is focused on supporting the delivery of security aspects to the company’s core products and to external stakeholders. This requires engaging with engineering teams and delivery of all facets of cyber and information security related to the delivery across the engineering lifecycle – from requirements all the way through to in-service support and maintenance. This is an exciting opportunity to be part of significant programmes, during which you will ensure that products meet the highest standards, in accordance with customer’s requirements and risk appetite. You will be supported in this role as part of a larger team of consultants, engineers and product domain specialists. Your work at Leonardo UK will see you take the lead in solving customer problems in an agile, innovative and team-centric manner. The role may involve a blended hybrid working model, with a mixture of working from home and working on site at one of our Leonardo offices to ensure close collaboration with the wider team and with our customers.

Key Responsibility Areas

• Work as part of a larger team, delivering streams of work independently, to meet all aspects of the cyber and information security delivery across an engineering lifecycle.
• Interpreting customer requirements into actionable security management plans, statements of work, and activities to be delivered across the lifecycle.
• Oversight and delivery of associated statements of work and artefacts to time, cost and quality constraints.
• Identification, management and escalation of technical and delivery risks and issues.
• Maintain customer relationships for the cyber and information security workstream, both internal and external.
• Mentoring of consultants within your team as required.

Skills

• Ability to work independently without supervision and make sound decisions based on available information.
• Ability to communicate effectively, written and verbal, with internal and external stakeholders.
• Core consulting skills – building client relations; adaptability to changing schedules; reliability and quality of task delivery; flexibility in working hours and locations; team player.

Knowledge and Demonstrable Experience

• 3+ Years delivery experience in a Cyber/Engineering Role.
• Involvement in MOD accreditation and secure by design processes (ISN2023/09), associated policies and practices across the lifecycle.
• Knowledge or application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53).
• Managing risks and services in accordance with customer, regulatory and legislative expectations.
• Experience outside of traditional enterprise IT scenarios extending to proprietary and open-source software, firmware and electronic hardware.
• Developing, evaluating and analysing design constraints, and detailed system and security designs as they pertain to the cyber domain.
• Experience working with cyber and security requirements down to the system control level.
• Experience conducting cyber and information security risk assessment activities including threat modelling, vulnerability analysis and analysis of mitigations.
• Scoping and managing security verification & validation activities and remedial action plans.
• Experience working with product engineers, system architects, and developers to provide oversight and guidance in the development of robust solutions, including advising on suitable product or platform lockdown and configurations.

Nice to Have

• Understanding of the engineering lifecycle.
• Knowledge of current Cryptographic technologies, Key Management Systems & practical COMSEC implementations in line with MOD / NCSC standards.
• Knowledge of Cyber Security & Airworthiness (RCTA-DO-326A/B, 355A & 356A).

Security Clearance

You must be eligible for full security clearance. For more information and guidance please visit this link.

Benefits

• Flexible Working: Flexible hours with hybrid working options.
• Company funded flexible benefits: Access to private healthcare, dental schemes, Workplace ISA, Go Green Car Scheme, technology and lifestyle options (£500 annual allowance).
• Holidays: 25 days plus bank holidays, option to buy/sell leave and to accrue up to 12 additional flexi leave days per year.
• Pension: Award winning pension scheme (up to 15% employer contribution).
• Wellbeing: Employee Assistance Programme with access to free mental health support, financial wellbeing support and network groups to demonstrate our ongoing commitment to diversity & inclusion (Enable, Pride, Equalise, Reservists, Carers).
• Lifestyle: Discounted Gym membership, Cycle to work scheme.
• Training: Free access to more than 4000 online courses via Coursera.
• Referral Incentive: You can earn a reward for successfully referring a friend or family member.
• Bonus: Scheme in place for all employees at management level and below.

Primary Location: GB - Edinburgh

Additional Locations: GB - Newcastle

Contract Type: Permanent

Hybrid Working: Hybrid