At a Glance
- Tasks: Support secure systems and manage cyber risk in a high-impact role.
- Company: Join a leading defence programme with a focus on security and compliance.
- Benefits: Competitive inside-IR35 rate and work alongside experienced professionals.
- Other info: Engage with technical and senior stakeholders in a secure facility.
- Why this job: Make a real difference in cyber security and assurance governance.
- Qualifications: Active DV clearance and strong experience in Information Assurance required.
The predicted salary is between 60000 - 80000 € per year.
We’re looking for a DV‑cleared Information Assurance Engineer to strengthen assurance capability across a critical defence programme. This is a delivery‑focused role working at the heart of secure systems, helping to close assurance gaps, manage cyber risk, and ensure systems are secure, compliant, and accreditation‑ready.
You’ll work alongside Security Leads, system owners, and enterprise stakeholders to support Secure by Design, manage risk arising from ST&V and CSF assessments, and drive POA&M‑led remediation across the estate.
What You’ll Be Doing
- Supporting Secure by Design (SbD) documentation uplift across prime and supplier environments
- Validating security control compliance using CSF tracker maturity assessments
- Identifying, documenting, and articulating assurance gaps and observations
- Conducting risk assessments for control deficiencies arising from:
- ST&V failures
- CSF maturity shortfalls
- Creating and maintaining Risk Detail Records (RDRs) in line with JSP 892
- Managing and tracking POA&Ms, ensuring clear ownership, timelines, and evidence‑based closure
- Supporting compliance activities aligned to:
- Secure by Design
- NIST RMF
- NIST CSF v2.0
- Reviewing and uplifting system assurance documentation, including:
- System Operating Procedures (SyOPs)
- Codes of Connection (CoCo)
- Supporting cyber resilience and incident preparedness, including:
- Incident response playbooks
- Tabletop Exercises (TTX) and post‑exercise assurance capture
What We’re Looking For
- Active DV clearance
- Strong experience in Information Assurance / Cyber Security Assurance / GRC
- Proven background in risk management, POA&M remediation, and assurance governance
- Working knowledge of:
- NIST RMF / NIST CSF
- Secure by Design principles
- Defence assurance environments
- Comfortable working on‑site in a secure facility
- Clear communicator, able to engage with technical and senior stakeholders
Why Apply
- High‑impact role on a sensitive, high‑profile programme
- Clear scope, strong governance, and meaningful assurance work
- Competitive inside‑IR35 rate reflecting DV clearance and on‑site delivery
- Work with experienced security and delivery professionals
Knowledge Engineer in Huntingdon employer: Carbon60
As a leading employer in the defence sector, we offer a dynamic work environment where your expertise as a Knowledge Engineer will directly contribute to national security. Our commitment to employee growth is evident through continuous professional development opportunities and a collaborative culture that values innovation and integrity. Located in a secure facility, you will work alongside seasoned professionals on high-impact projects, ensuring that your contributions are both meaningful and rewarding.
StudySmarter Expert Advice🤫
We think this is how you could land Knowledge Engineer in Huntingdon
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those already working in roles similar to the Knowledge Engineer position. Use platforms like LinkedIn to connect and engage with them; you never know who might have the inside scoop on job openings.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of Secure by Design principles and NIST frameworks. We recommend doing mock interviews with friends or using online resources to practice articulating your experience in risk management and assurance governance.
✨Tip Number 3
Showcase your skills through real-world examples. When discussing your experience, focus on specific projects where you’ve managed POA&Ms or conducted risk assessments. This will help you stand out as someone who can hit the ground running.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Knowledge Engineer in Huntingdon
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Knowledge Engineer role. Highlight your experience in Information Assurance and Cyber Security, focusing on relevant projects and skills that match the job description.
Craft a Compelling Cover Letter:Your cover letter should tell us why you're the perfect fit for this role. Use specific examples from your past work to demonstrate your understanding of Secure by Design principles and risk management.
Showcase Your Communication Skills:Since you'll be engaging with technical and senior stakeholders, it's crucial to showcase your communication skills. Make sure your application reflects your ability to articulate complex ideas clearly and effectively.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. This way, we can easily track your application and ensure it gets the attention it deserves!
How to prepare for a job interview at Carbon60
✨Know Your Stuff
Make sure you brush up on your knowledge of Information Assurance and Cyber Security. Familiarise yourself with NIST RMF and CSF, as well as Secure by Design principles. Being able to discuss these topics confidently will show that you're serious about the role.
✨Prepare for Scenario Questions
Expect questions that ask you to demonstrate how you've handled risk management or assurance governance in the past. Think of specific examples where you identified assurance gaps or managed POA&Ms. Use the STAR method (Situation, Task, Action, Result) to structure your answers.
✨Engage with Stakeholders
Since this role involves working with various stakeholders, practice how you'll communicate complex security concepts clearly. Be ready to explain how you would engage with both technical teams and senior management to ensure everyone is on the same page regarding security compliance.
✨Show Your Problem-Solving Skills
Be prepared to discuss how you approach problem-solving, especially in high-pressure situations. Highlight any experience you have with incident response or conducting tabletop exercises, as this will demonstrate your ability to think critically and act decisively in a secure environment.
