Product Cyber Resilience Manager in Woking

Product Cyber Resilience Manager in Woking

Woking Full-Time 60000 - 80000 £ / year (est.) Home office (partial)
Leonardo

At a Glance

  • Tasks: Lead product security strategies and protect cutting-edge defence technology.
  • Company: Join Leonardo, a global leader in Aerospace, Defence, and Security.
  • Benefits: Enjoy flexible working, generous leave, and a comprehensive benefits package.
  • Other info: Be part of a diverse team shaping global safety and innovation.
  • Why this job: Make a real impact on the future of defence technology and innovation.
  • Qualifications: Experience in cybersecurity and a passion for learning are key.

The predicted salary is between 60000 - 80000 £ per year.

hackajob is collaborating with Leonardo to connect them with exceptional professionals for this role. The following information should be read carefully by all candidates.

Salary: £60,000 to £80,000. Leonardo UK operates a grade-based salary framework with broad bands. The salary range shown reflects the approved grade band for this role, or a narrower hiring range published within that band, and is benchmarked against the external market. Exceptions above the standard range are managed through governance controls to protect internal equity.

Your impact: Ready to make your mark on next generation products and help define the resilience of tomorrow's defence technology? As a Product Cyber Resilience Manager within our Radar and Advanced Targeting (RATs) business, you’ll join a multi-discipline team at the forefront of innovation and play a pivotal role in protecting some of the UK’s most advanced systems. You’ll shape the product security strategy from concept to delivery and champion strengthening product integrity and support exciting technical challenges, ensuring a strong security culture across the business.

As a Product Cyber Resilience Manager, you will:

  • Undertake the production of Security Management Plans, work package descriptions and cost estimates in support of product bids, services and proposals.
  • Review and provide guidance of security risk assessments, risk mitigation plans, mitigation gap analysis and preparation of security management documentation for system Accreditation, such as solution hardening guidance and security operating procedures.
  • Define product security requirements, advise development teams on suitable implementation standards and techniques and oversee product development activities.
  • Liaise with Security Accreditors and Security Assurance Coordinators in support of security Accreditation.
  • Participate in internal and external discipline working groups and with academic partners covering Product Cyber Resilience and Product Security for various established and emerging standards.
  • Contribute to continual improvement of the engineering capability.

You will be responsible for the management of Product Security Risk of all the product families within your sector. You will be accountable to the respective product family System Design Authority (the Risk Owner), providing subject matter advice to the Integrated Product Team, whilst collaborating with your fellow Product Cyber Resilience Managers (PCRMs) across the Electronics Business Unit. The role involves conducting risk assessments, developing and implementing product security strategies and collaborating with cross-functional teams, including Leonardo's Cyber Security Business Unit, to embed product and cyber security best practices throughout the product development lifecycle.

You will be responsible for determining product cyber resilience objectives through security risk management techniques in relation to the Integrated Sensing products and then working with the engineering teams to achieve those objectives through the architecture and design of the solution. You’ll also support the product assurance activities to verify compliance to those objectives and the transition to operations and ongoing through-life support.

What you’ll bring:

  • Experience with product security assessment methods or security risk management systems for complex products based on a recognised framework in a highly regulated industry such as aerospace, nuclear, automotive, rail or oil & gas.
  • Practical experience of the System Development Life Cycle, Software Development Life Cycle, V-Models and Agile frameworks.
  • Experience in managing product information security, including risk assessment, threat modelling, vulnerability management, and incident response.
  • Strong knowledge of cybersecurity standards and best practices, such as ISO 27001, NIST Cybersecurity Framework, and Knowledge of UK/NATO Information Assurance/Accreditation frameworks; Familiarity with the application of cyber resilience controls to embedded systems.
  • Experience with cybersecurity tools and technologies, such as SIEM, IDS/IPS, DLP, and endpoint protection.
  • Proficiency in cybersecurity frameworks, such as MITRE ATT&CK and the Cybersecurity Capability Maturity Model (CMMC).
  • Certifications such as CISSP, CISM, or CEH are a plus.

This is not an exhaustive list, and we are keen to hear from you even if you might not have experience in all the above. The most important skill is a good attitude and willingness to learn.

Security Clearance: This role is subject to pre-employment screening in line with the UK Government’s Baseline Personnel Security Standard (BPSS). An additional range of Personnel Security Controls referred to as National Security Vetting (NSV) may apply, this could include meeting the eligibility requirements for The Security Check (SC) or Developed Vetting (DV). For more information and guidance please visit: must have the ability to obtain UK SC security clearance and work within UKEO and US ITAR TAA restrictions.

Why join us: At Leonardo, our people are at the heart of everything we do. We offer a comprehensive, company-funded benefits package that supports your wellbeing, career development, and work life balance. Whether you're looking to grow professionally, care for your health, or plan for the future, we’re here to help you thrive.

  • Time to Recharge: Enjoy generous leave with the opportunity to accrue up to 12 additional flexi-days each year.
  • Secure your Future: Benefit from our award-winning pension scheme with up to 15% employer contribution.
  • Your Wellbeing Matters: Free access to mental health support, financial advice, and employee-led networks championing inclusion and diversity (Enable, Pride, Equalise, Armed Forces, Carers, Wellbeing and Ethnicity).
  • Rewarding Performance: All employees at management level and below are eligible for our bonus scheme.
  • Never Stop Learning: Free access to 4,000+ online courses via Coursera and LinkedIn Learning.
  • Refer a friend: Receive a financial reward through our referral programme.
  • Tailored Perks: Spend up to £500 annually on flexible benefits including private healthcare, dental, family cover, tech & lifestyle discounts, gym memberships and more.
  • Flexible working: Flexible hours with hybrid working options. For part time opportunities, please talk to us about what might be possible for this role.

For a full list of our company benefits please visit our website. Leonardo is a global leader in Aerospace, Defence, and Security. Headquartered in Italy, we employ over 53,000 people worldwide including 8,500 across 9 sites in the UK. Our employees are not just part of a team they are key contributors to shaping innovation, advancing technology, and enhancing global safety. At Leonardo we are committed to building an inclusive, accessible, and welcoming workplace. We believe that a diverse workforce sparks creativity, drives innovation, and leads to better outcomes for our people and our customers.

If you have any accessibility requirements to support you during the recruitment process, just let us know. Be part of something bigger - apply now!

Primary Location: GB - Edinburgh

Additional Locations: GB - Newcastle

Contract Type: Permanent

Hybrid Working: Hybrid

Leonardo

Contact Details:

Leonardo Recruitment Team

StudySmarter Expert Advice🤫

We think this is how you could land Product Cyber Resilience Manager in Woking

Get Involved in the Cybersecurity Community

Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!

Show Off Your Skills with Capture the Flag Competitions

Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Leonardo, love seeing candidates who actively engage in these challenges.

Tailor Your Online Presence

Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!

Apply Directly Through Leonardo

Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Leonardo. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.

We think you need these skills to ace Product Cyber Resilience Manager in Woking

Product Security Assessment Methods
Security Risk Management Systems
System Development Life Cycle (SDLC)
Software Development Life Cycle (SDLC)
V-Models
Agile Frameworks
Risk Assessment

Some tips for your application 🫡

Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!

Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!

Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Leonardo insight into your practical problem-solving abilities and makes your application memorable.

Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Leonardo that you’re committed to staying ahead in the game.

How to prepare for a job interview at Leonardo

Sharpen Your Technical Skills

For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.

Prepare for Scenario-Based Questions

Expect the interviewers at Leonardo to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.

Highlight Your Certifications

Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Leonardo.

Show Your Passion for Cybersecurity

Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.