CYBER SECURITY INFRASTRUCTURE ENGINEER- AEROSPACE AND DEFENSE.

Bullisher is a data centric fintech solution provider in the aerospace and defense industry for institutional level investors, looking to disrupt and revolutionise a $3 trillion dollar industry. We spearhead an industrial-leading Blackbox to facilitate and administer trade agreements pioneered by a vehicle, driven by our new generation benchmark delivering solutions through innovation with uncompromising agility.

This role may suit an individual who is a specialist in truly integrated highly secure one device solution into trusted security networks. The oversight requires you to strengthen security of high value long live digital assets and critical systems. As a newly created role for a team of eight, you’ll become the foundation of Bullisher’s security policy building blocks of the solutions ecosystem, with encryption at the core of the organisation's security.

What are we looking for:

• A proven record in driving computing processing capabilities policy management.
• Proven record exercising the DoD 8140 and DoD 8570 in computer network defense.
• The ability to develop reference architecture employing multiple quantum resistance mechanisms.
• Incrementally executing multiple reference framework (NIST Special Publication 800-53)-(ISO/IEC 27001) - (NIST SP 800-37) risk management approach in conformity with (DFARS § 252.204-7012) Defense Federal Acquisition Regulation Supplement.
• The implementation of NIST SP 800-171 Assessment Methodology.

Duties and Responsibilities:

• Generate key materials from high entropy to random source from master key - distribute the master key to encryption end points and ensure data is encrypted at source and protected throughout its lifecycle.
• Create a secure route of trust that is controlled out of a centralized policy management.
• Enhance and develop a combined solution to encrypt data at endpoints, such as laptops and mobile devices.
• Deploy new quantum resistance algorithms and quantum cryptography to maintain confidentiality, authenticity, and data integrity.
• Evaluate security needs and vulnerabilities.
• Conduct risk management to become more crypto agile.
• Migrating any new security strategy must undergo a rigorous test and installation period, which will undergo a formal approval, review, and vote by representatives for security impact analysis, the C.A.B. (Change Approval Board).
• Ensure production data is masked before it goes to any QA or sandbox or staging environment.
• Identify and protect the organisation’s crown jewels under corporate policy.
• Incorporate guidance policies and mechanisms relevant to architecture which offers a standard interface for supporting flexible deployment.
• Ensure processes adhere to standards for secure systems design in conformity to NIST SP 800-160.
• Concrete implementation to protect sensitive data while avoiding silos and security gaps.
• Areas to cover include balancing protections inside and outside the network, various ways of prioritising risk, and mapping potential paths into and out of our network.
• Merging attack surface management, vulnerability, and threat information to identify real risk.

Physical Demands:

This position requires the ability to communicate and exchange information, utilise equipment necessary to perform the job, and move about the office.

Environment:

This position will operate in the following areas of the organisation regulatory engineering division “Multidomain Defence Dock”. Employees must be legally authorized to work in the UK. Verification of employment eligibility will be required at the time of hire. Visa sponsorship is not available for this position.

Qualifications, Key Requirements and Skillset:

• Excellent programming skills.
• 20+ years in cybersecurity and digital solutions engineering.
• Proficiency in strong key generation, key lifecycle management, and policy management is essential.
• High-level recognised degree in Quantum Physics or multi-physics degree.
• (GSEC) and Offensive Security Certified Professional (OSCP) are essential.
• Certified Information Security Manager (CISM) is essential.
• Certified Authorization Professional (CAP).
• Certified Network Defender (CND).
• Information Systems Security Architecture Professional (ISSAP).
• Health Care Information Security and Privacy Practitioner (HCISPP).
• GIAC Certified Intrusion Analyst (GCIA).
• GIAC Security Leadership Certificate (GSLC).
• Information Systems Security Engineering Professional (ISSEP).
• Certified Ethical Hacker (CEH).
• Computer Hacking Forensics Investigator (CHFI).
• It is a prerequisite to be certified in one of the listed DoD 8570 Certifications.

Interview Process:

• Stage 1: Cognitive Ability Test
• Stage 2: Cognitive Assessment Screening: with a 30+ years experience psychologist
• Stage 3: Pre-screening (verification checks & DV security clearance)
• Stage 4: Interview with the CEO, CTO & GC