Product Cyber Security Manager in Edinburgh

Product Cyber Security Manager in Edinburgh

Edinburgh Full-Time 60000 - 80000 £ / year (est.) Home office (partial)
Leonardo

At a Glance

  • Tasks: Lead product security strategies and manage cyber resilience for advanced defence technology.
  • Company: Join Leonardo, a global leader in innovative defence solutions.
  • Benefits: Enjoy flexible hours, hybrid working, and access to 4,000+ online courses.
  • Other info: Be part of a diverse team committed to inclusion and professional growth.
  • Why this job: Make a real impact on the future of defence technology and cybersecurity.
  • Qualifications: Experience in product security and risk management in regulated industries.

The predicted salary is between 60000 - 80000 £ per year.

Exceptions above the standard range are managed through governance controls to protect internal equity.

Ready to make your mark on next generation products and help define the resilience of tomorrow’s defence technology? As a Product Cyber Resilience Manager within our Radar and Advanced Targeting (RATs) business, you’ll join a multi-discipline team at the forefront of innovation and play a pivotal role in protecting some of the UK’s most advanced systems. You’ll shape the product security strategy from concept to delivery and champion strengthening product integrity and support exciting technical challenges, ensuring a strong security culture across the business.

As a Product Cyber Resilience Manager, you will:

  • Undertake the production of Security Management Plans, work package descriptions and cost estimates in support of product bids, services and proposals.
  • Review and provide guidance on security risk assessments, risk mitigation plans, mitigation gap analysis and preparation of security management documentation for system Accreditation, such as solution hardening guidance and security operating procedures.
  • Define product security requirements, advise development teams on suitable implementation standards and techniques and oversee product development activities.
  • Participate in internal and external discipline working groups and with academic partners covering Product Cyber Resilience and Product Security for various established and emerging standards.

You will be responsible for the management of Product Security Risk of all the product families within your sector. You will be accountable to the respective product family System Design Authority (the Risk Owner), providing subject matter advice to the Integrated Product Team, whilst collaborating with your fellow Product Cyber Resilience Managers (PCRMs) across the Electronics Business Unit. The role involves conducting risk assessments, developing and implementing product security strategies and collaborating with cross-functional teams, including Leonardo's Cyber Security Business Unit, to embed product and cyber security best practices throughout the product development lifecycle.

You will be responsible for determining product cyber resilience objectives through security risk management techniques in relation to the Integrated Sensing products and then working with the engineering teams to achieve those objectives through the architecture and design of the solution.

Experience with product security assessment methods or security risk management systems for complex products based on a recognised framework in a highly regulated industry such as aerospace, nuclear, automotive, rail or oil & gas.

Practical experience of the System Development Life Cycle, Software Development Life Cycle, V-Models and Agile frameworks.

Experience in managing product information security, including risk assessment, threat modelling, vulnerability management, and incident response.

Strong knowledge of cybersecurity standards and best practices, such as ISO 27001, NIST Cybersecurity Framework, and knowledge of UK/NATO Information Assurance/Accreditation frameworks.

Experience with cybersecurity tools and technologies, such as SIEM, IDS/IPS, DLP, and endpoint protection.

Proficiency in cybersecurity frameworks, such as MITRE ATT&CK and the Cybersecurity Capability Maturity Model (CMMC).

Security Clearance: You must have the ability to obtain UK SC security clearance and work within UKEO and US ITAR TAA restrictions.

We offer a comprehensive, company-funded benefits package that supports your wellbeing, career development, and work–life balance. Whether you're looking to grow professionally, care for your health, or plan for the future, we’re here to help you thrive.

  • Secure your Future: Benefit from our award-winning pension scheme with up to 15% employer contribution.
  • Free access to mental health support, financial advice, and employee-led networks championing inclusion and diversity (Enable, Pride, Equalise, Armed Forces, Carers, Wellbeing and Ethnicity).
  • Rewarding Performance: All employees at management level and below are eligible for our bonus scheme.
  • Never Stop Learning: Free access to 4,000+ online courses via Coursera and LinkedIn Learning.
  • Receive a financial reward through our referral programme.
  • Spend up to £500 annually on flexible benefits including private healthcare, dental, family cover, tech & lifestyle discounts, gym memberships and more.
  • Flexible hours with hybrid working options. For part-time opportunities, please talk to us about what might be possible for this role.

For a full list of our company benefits please visit our website. Headquartered in Italy, we employ over 53,000 people worldwide including 8,500 across 9 sites in the UK. At Leonardo we are committed to building an inclusive, accessible, and welcoming workplace.

Contract Type: Permanent

Hybrid Working: Hybrid

Leonardo

Contact Details:

Leonardo Recruitment Team

StudySmarter Expert Advice🤫

We think this is how you could land Product Cyber Security Manager in Edinburgh

Get Involved in the Cybersecurity Community

Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!

Show Off Your Skills with Capture the Flag Competitions

Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Leonardo, love seeing candidates who actively engage in these challenges.

Tailor Your Online Presence

Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!

Apply Directly Through Leonardo

Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Leonardo. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.

We think you need these skills to ace Product Cyber Security Manager in Edinburgh

Security Management Plans
Risk Assessments
Risk Mitigation Plans
Security Documentation
Product Security Requirements
Cybersecurity Standards
ISO 27001

Some tips for your application 🫡

Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!

Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!

Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Leonardo insight into your practical problem-solving abilities and makes your application memorable.

Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Leonardo that you’re committed to staying ahead in the game.

How to prepare for a job interview at Leonardo

Sharpen Your Technical Skills

For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.

Prepare for Scenario-Based Questions

Expect the interviewers at Leonardo to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.

Highlight Your Certifications

Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Leonardo.

Show Your Passion for Cybersecurity

Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.