Head of Product Security

You really must have: Has hands-on experience of developing robust security risk management system for complex high integrity electronics systems in accordance with customer, regulatory and legislative expectations. Familiarity with Legislation – eg IPA, DPA, Official Secrets Act; Registered NCSC Certified Professional at lead level, or equivalent NCSC recognised qualification. Knowledge of UK/NATO Information Assurance standards, procedures & systems, including HMG Security Policy Framework, ISO security standards, DO326A. Familiarity with the principles of incident investigation and knows how to implement an investigation process; Practical experience of NCSC and Common Criteria security evaluation techniques and requirements up to High Grade. Knowledge of current Crypto technologies, Key Management Systems & practical COMSEC implementations. Regularly delivered training courses within a Company and delivered awareness presentations to other groups. Has worked with others to identify the future Product Security needs of the Company; Awareness of product security implications relating to safety; Excellent communication and interpersonal skills, ability to interact with subject matter experts regarding a wide range of technical and operational topics. Ability to obtain SC clearance; UK-eyes only caveat. It would be nice if you had: A strong background in design implementation of high integrity complex electronics, such as Software design to DO178C level C, Complex Electronics hardware up to DO254 Level Good understanding and experience in delivery and maintenance of products to meet regulatory requirements, for example MAA DAOS, ARP4754 Understanding of the concept of operations for products, in order to understand the functional security risks and define/agree the appropriate mitigations; Ability to identify and deliver alternate/innovative ways to manage security, including ensuring buy-in from key regulatory bodies; Understanding of the role of advisory boards within the UK Government or NATO for security. Active membership of an external security specialist group or forum Ability to obtain DV clearance. Why Leonardo? The business, primarily based in Luton, has a rich heritage in Electronic Warfare with over 100 years of history and providing the latest advances in radio frequency technology to our military customers in the UK and further afield. Under a strategic partnering arrangement (SPA) with the Royal Air Force and the Ministry of Defence’s Defence Equipment & Support (DE&S) and Defence Science and Technology Laboratory (Dstl) agencies, Leonardo acts as the UK industry lead chosen to bring together onshore providers to provide value-for-money defensive equipment for the nation’s fleets of military aircraft, while boosting export opportunities and generating prosperity around the UK. The company leads the consortium responsible for the Praetorian Defensive Aids Sub-System (DASS) currently installed on the Eurofighter Typhoon and the company’s BriteCloud expendable active decoy launched in 2013, represents the most significant advance in radar-guided missile countermeasures since the advent of chaff. The Future Combat Air line of business is the home of the Leonardo Electronics Division UK key interface into the UK MoD Future Combat Air System (FCAS) Programme, also referred to as Tempest. Focusing on the development of advanced defence electronics, Leonardo is a founding partner of Team Tempest, alongside the UK MOD, BAE Systems, Rolls Royce and MBDA UK. The team has been working at pace to develop the technologies and capabilities necessary to see a new combat air system go into service in 2035. In July 2021, the UK MOD awarded Team Tempest a further contract worth approximately £250m to progress the development of the future capability. As the UK’s defence electronics champion, Leonardo is leading the nation’s development of the Integrated Sensing and Non-Kinetic Effects (ISANKE) and Integrated Communications Systems (ICS) technology for the next generation system. Security Clearance You must be eligible for full security clearance. For more information and guidance, please visit: https://www.gov.uk/government/publications/united-kingdom-security-vetting-clearance-levels Diversity Statement We are relentless about inclusion. We understand an inclusive environment is one that welcomes everyone as they are. We see diversity as a strength. We still have some way to go to achieving diverse teams across our whole business. We would like you to be part of our journey to creating that better balance and welcome applications from all individuals from all walks of life as we build a stronger company together. Primary Location: GB – Luton – Cap. Green 300 Contract Type: Hybrid Working: Hybrid #J-18808-Ljbffr